Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2007-2692
Vulnerability from cvelistv5
Published
2007-05-16 01:00
Modified
2024-08-07 13:49
Severity ?
EPSS score ?
Summary
The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remote authenticated users to gain privileges.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-07T13:49:57.306Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "27823", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/27823" }, { "name": "29443", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/29443" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-18.html" }, { "name": "RHSA-2007:0894", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2007-0894.html" }, { "name": "26073", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/26073" }, { "name": "MDVSA-2008:028", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:028" }, { "name": "[announce] 20070712 MySQL Community Server 5.0.45 has been released!", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://lists.mysql.com/announce/470" }, { "name": "ADV-2007-1804", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2007/1804" }, { "name": "oval:org.mitre.oval:def:9166", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9166" }, { "name": "20070717 rPSA-2007-0143-1 mysql mysql-bench mysql-server", "tags": [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred" ], "url": "http://www.securityfocus.com/archive/1/473874/100/0/threaded" }, { "name": "1018070", "tags": [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred" ], "url": "http://www.securitytracker.com/id?1018070" }, { "name": "mysql-changedb-privilege-escalation(34348)", "tags": [ "vdb-entry", "x_refsource_XF", "x_transferred" ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34348" }, { "name": "25301", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/25301" }, { "name": "DSA-1413", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "http://www.debian.org/security/2007/dsa-1413" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://issues.rpath.com/browse/RPL-1536" }, { "name": "28637", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/28637" }, { "name": "30351", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/30351" }, { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "http://bugs.mysql.com/bug.php?id=27337" }, { "name": "26430", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/26430" }, { "name": "28838", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/28838" }, { "name": "USN-588-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "http://www.ubuntu.com/usn/usn-588-1" }, { "name": "34765", "tags": [ "vdb-entry", "x_refsource_OSVDB", "x_transferred" ], "url": "http://osvdb.org/34765" }, { "name": "SUSE-SR:2008:003", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html" }, { "name": "RHSA-2008:0364", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2008-0364.html" }, { "name": "24011", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/24011" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2007-05-14T00:00:00", "descriptions": [ { "lang": "en", "value": "The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remote authenticated users to gain privileges." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2018-10-16T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre" }, "references": [ { "name": "27823", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/27823" }, { "name": "29443", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/29443" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-18.html" }, { "name": "RHSA-2007:0894", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2007-0894.html" }, { "name": "26073", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/26073" }, { "name": "MDVSA-2008:028", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:028" }, { "name": "[announce] 20070712 MySQL Community Server 5.0.45 has been released!", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://lists.mysql.com/announce/470" }, { "name": "ADV-2007-1804", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2007/1804" }, { "name": "oval:org.mitre.oval:def:9166", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9166" }, { "name": "20070717 rPSA-2007-0143-1 mysql mysql-bench mysql-server", "tags": [ "mailing-list", "x_refsource_BUGTRAQ" ], "url": "http://www.securityfocus.com/archive/1/473874/100/0/threaded" }, { "name": "1018070", "tags": [ "vdb-entry", "x_refsource_SECTRACK" ], "url": "http://www.securitytracker.com/id?1018070" }, { "name": "mysql-changedb-privilege-escalation(34348)", "tags": [ "vdb-entry", "x_refsource_XF" ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34348" }, { "name": "25301", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/25301" }, { "name": "DSA-1413", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "http://www.debian.org/security/2007/dsa-1413" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://issues.rpath.com/browse/RPL-1536" }, { "name": "28637", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/28637" }, { "name": "30351", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/30351" }, { "tags": [ "x_refsource_MISC" ], "url": "http://bugs.mysql.com/bug.php?id=27337" }, { "name": "26430", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/26430" }, { "name": "28838", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/28838" }, { "name": "USN-588-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "http://www.ubuntu.com/usn/usn-588-1" }, { "name": "34765", "tags": [ "vdb-entry", "x_refsource_OSVDB" ], "url": "http://osvdb.org/34765" }, { "name": "SUSE-SR:2008:003", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html" }, { "name": "RHSA-2008:0364", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2008-0364.html" }, { "name": "24011", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/24011" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-2692", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remote authenticated users to gain privileges." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "27823", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/27823" }, { "name": "29443", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/29443" }, { "name": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-18.html", "refsource": "CONFIRM", "url": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-18.html" }, { "name": "RHSA-2007:0894", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2007-0894.html" }, { "name": "26073", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26073" }, { "name": "MDVSA-2008:028", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:028" }, { "name": "[announce] 20070712 MySQL Community Server 5.0.45 has been released!", "refsource": "MLIST", "url": "http://lists.mysql.com/announce/470" }, { "name": "ADV-2007-1804", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/1804" }, { "name": "oval:org.mitre.oval:def:9166", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9166" }, { "name": "20070717 rPSA-2007-0143-1 mysql mysql-bench mysql-server", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/473874/100/0/threaded" }, { "name": "1018070", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1018070" }, { "name": "mysql-changedb-privilege-escalation(34348)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34348" }, { "name": "25301", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/25301" }, { "name": "DSA-1413", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2007/dsa-1413" }, { "name": "https://issues.rpath.com/browse/RPL-1536", "refsource": "CONFIRM", "url": "https://issues.rpath.com/browse/RPL-1536" }, { "name": "28637", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/28637" }, { "name": "30351", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/30351" }, { "name": "http://bugs.mysql.com/bug.php?id=27337", "refsource": "MISC", "url": "http://bugs.mysql.com/bug.php?id=27337" }, { "name": "26430", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26430" }, { "name": "28838", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/28838" }, { "name": "USN-588-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/usn-588-1" }, { "name": "34765", "refsource": "OSVDB", "url": "http://osvdb.org/34765" }, { "name": "SUSE-SR:2008:003", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html" }, { "name": "RHSA-2008:0364", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2008-0364.html" }, { "name": "24011", "refsource": "BID", "url": "http://www.securityfocus.com/bid/24011" } ] } } } }, "cveMetadata": { "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-2692", "datePublished": "2007-05-16T01:00:00", "dateReserved": "2007-05-15T00:00:00", "dateUpdated": "2024-08-07T13:49:57.306Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2007-2692\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2007-05-16T01:19:00.000\",\"lastModified\":\"2024-11-21T00:31:25.393\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remote authenticated users to gain privileges.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n mysql_change_db en MySQL 5.0.x anterior a 5.0.40 y 5.1.x anterior a 5.1.18 no restaura los privilegios THD::db_access cuando regresa de rutinas almacenadas SQL SECURITY INVOKER, lo cual permite a usuarios autenticados remotamente obtener privilegios.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:S/C:P/I:P/A:P\",\"baseScore\":6.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":6.8,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":true,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC198CDB-CAC0-41DD-9FCD-42536E7FE11A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B77A2761-2B44-4061-9C29-A54F90A1AD83\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B3AD851-056F-4E57-B85B-4AC5A5A20C0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD24EA8C-4FCA-4F40-B2EA-7DFA49432483\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"754B78F2-A03C-40BE-812B-F5E57B93D20B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"575039BD-A8B6-4459-B5F0-F220A94650EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.5.0.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BDA03768-74D2-4C5D-ABCF-8A91F9E6C273\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"542B23CB-7535-4EF7-B926-466A5161A0D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45E686C3-4100-465C-9F45-068580B496E5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E9F09D8-6FAE-4A5B-AE04-248CD52C5FF4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB618DB2-6B00-4E99-8232-937D2C51986B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"665E063D-355D-4A5A-A05F-36BF582DE36F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.22.1.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"214E3CF9-6362-4F5A-91B7-5E69564F7144\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.24:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4C6CD84-EA5D-451F-AFC3-5F7094F0017D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"35BED939-3366-4CBF-B6BF-29C0C42E97F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.0:alpha:*:*:*:*:*:*\",\"matchCriteriaId\":\"19001041-22C4-4D2C-A918-378DACBB1DF4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.3:beta:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F610D56-6BB6-48FB-B43A-670CE9168500\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1668BB5B-E7FB-4430-B8D5-89E308F5DD39\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E3F44DA1-1509-4AC7-AB6B-2B2A834A16AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A2D6DF6-FE5D-428F-BCEB-E7832C2B4FE4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7777E919-FD4B-452B-88D7-165410C703F2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A56ACB60-EC2C-45AF-B923-B3A90A2F7AE1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"67C52D66-3BCA-4854-BF09-CB6DF1AC0E48\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF54CC8D-B736-461D-B693-686E862EF969\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5E5EADE4-9E1B-4A1C-B3B5-ACF1287A19E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"053ACE9B-A146-42C0-ADB2-47F6119965D8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"30B4F891-2A03-45A8-A49C-7F8B8F7D8407\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"69E62AC4-954E-476C-98BE-C138E328AE7B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B88385C-F5FB-401F-80D5-5BF11CE3C19D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"11873AEA-5D6C-4AC0-915A-8A2869B2EFF5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5965032E-5BC0-4E69-B097-F9EE2B24C861\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.37:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"35F21A5A-F9C0-4860-80AD-1D3937483F28\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"73F49A1D-BCA3-4772-8AB3-621CCC997B3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F719DD8E-8379-43C3-97F9-DE350E457F7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"342BB65B-1358-441C-B59A-1756BCC6414A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8589B1E7-0D6D-44B4-A36E-8225C5D15828\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"88FEEE64-899F-4F55-B829-641706E29E32\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D8597F56-BB14-480C-91CD-CAB96A9DDD8D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F4C5C88-95A7-4DDA-BC2F-CAFA47B0D67A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5EB2323C-EFE2-407A-9AE9-8717FA9F8625\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6341F695-6034-4CC1-9485-ACD3A0E1A079\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1DF5F19-ECD9-457F-89C6-6F0271CF4766\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"446DB5E9-EF4C-4A53-911E-91A802AECA5D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5829BE6A-BC58-482B-9DA1-04FDD413A7A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C85D20DF-702B-4F0B-922D-782474A4B663\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"73A09785-3CA4-4797-A836-A958DCDC322F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4DE3D79-0966-4E14-9288-7C269A2CEEC3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"564F6A24-BEB3-4420-A633-8AD54C292436\"}]}]}],\"references\":[{\"url\":\"http://bugs.mysql.com/bug.php?id=27337\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://dev.mysql.com/doc/refman/5.1/en/news-5-1-18.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.mysql.com/announce/470\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://osvdb.org/34765\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/25301\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/26073\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/26430\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/27823\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/28637\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/28838\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/29443\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/30351\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2007/dsa-1413\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2008:028\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2007-0894.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2008-0364.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/473874/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/24011\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securitytracker.com/id?1018070\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.ubuntu.com/usn/usn-588-1\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/1804\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/34348\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://issues.rpath.com/browse/RPL-1536\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9166\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://bugs.mysql.com/bug.php?id=27337\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://dev.mysql.com/doc/refman/5.1/en/news-5-1-18.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.mysql.com/announce/470\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://osvdb.org/34765\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/25301\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/26073\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/26430\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/27823\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/28637\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/28838\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/29443\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/30351\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2007/dsa-1413\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2008:028\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2007-0894.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2008-0364.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/473874/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/24011\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1018070\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ubuntu.com/usn/usn-588-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/1804\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/34348\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://issues.rpath.com/browse/RPL-1536\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9166\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"vendorComments\":[{\"organization\":\"Red Hat\",\"comment\":\"This issue did not affect mysql packages as shipped in Red Hat Enterprise Linux 2.1, 3 and 4.\\n\\nAffected mysql packages as shipped in Red Hat Enterprise Linux 5 and Red Hat Application Stack were fixed via:\\n\\nhttps://rhn.redhat.com/errata/CVE-2007-2692.html\",\"lastModified\":\"2008-07-25T00:00:00\"}]}}" } }
rhsa-2008_0364
Vulnerability from csaf_redhat
Published
2008-05-20 12:44
Modified
2024-11-22 01:59
Summary
Red Hat Security Advisory: mysql security and bug fix update
Notes
Topic
Updated mysql packages that fix various security issues and several bugs
are now available for Red Hat Enterprise Linux 5.
This update has been rated as having low security impact by the Red Hat
Security Response Team.
Details
MySQL is a multi-user, multi-threaded SQL database server. MySQL is a
client/server implementation consisting of a server daemon (mysqld), and
many different client programs and libraries.
MySQL did not require privileges such as "SELECT" for the source table in a
"CREATE TABLE LIKE" statement. An authenticated user could obtain sensitive
information, such as the table structure. (CVE-2007-3781)
A flaw was discovered in MySQL that allowed an authenticated user to gain
update privileges for a table in another database, via a view that refers
to the external table. (CVE-2007-3782)
MySQL did not require the "DROP" privilege for "RENAME TABLE" statements.
An authenticated user could use this flaw to rename arbitrary tables.
(CVE-2007-2691)
A flaw was discovered in the mysql_change_db function when returning from
SQL SECURITY INVOKER stored routines. An authenticated user could use this
flaw to gain database privileges. (CVE-2007-2692)
MySQL allowed an authenticated user to bypass logging mechanisms via SQL
queries that contain the NULL character, which were not properly handled by
the mysql_real_query function. (CVE-2006-0903)
MySQL allowed an authenticated user to access a table through a previously
created MERGE table, even after the user's privileges were revoked from
the original table, which might violate intended security policy. This is
addressed by allowing the MERGE storage engine to be disabled, which can
be done by running mysqld with the "--skip-merge" option. (CVE-2006-4031)
MySQL evaluated arguments in the wrong security context, which allowed an
authenticated user to gain privileges through a routine that had been made
available using "GRANT EXECUTE". (CVE-2006-4227)
Multiple flaws in MySQL allowed an authenticated user to cause the MySQL
daemon to crash via crafted SQL queries. This only caused a temporary
denial of service, as the MySQL daemon is automatically restarted after the
crash. (CVE-2006-7232, CVE-2007-1420, CVE-2007-2583)
As well, these updated packages fix the following bugs:
* a separate counter was used for "insert delayed" statements, which caused
rows to be discarded. In these updated packages, "insert delayed"
statements no longer use a separate counter, which resolves this issue.
* due to a bug in the Native POSIX Thread Library, in certain situations,
"flush tables" caused a deadlock on tables that had a read lock. The mysqld
daemon had to be killed forcefully. Now, "COND_refresh" has been replaced
with "COND_global_read_lock", which resolves this issue.
* mysqld crashed if a query for an unsigned column type contained a
negative value for a "WHERE [column] NOT IN" subquery.
* in master and slave server situations, specifying "on duplicate key
update" for "insert" statements did not update slave servers.
* in the mysql client, empty strings were displayed as "NULL". For
example, running "insert into [table-name] values (' ');" resulted in a
"NULL" entry being displayed when querying the table using "select * from
[table-name];".
* a bug in the optimizer code resulted in certain queries executing much
slower than expected.
* on 64-bit PowerPC architectures, MySQL did not calculate the thread stack
size correctly, which could have caused MySQL to crash when overly-complex
queries were used.
Note: these updated packages upgrade MySQL to version 5.0.45. For a full
list of bug fixes and enhancements, refer to the MySQL release notes:
http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0.html
All mysql users are advised to upgrade to these updated packages, which
resolve these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Low" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated mysql packages that fix various security issues and several bugs\nare now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having low security impact by the Red Hat\nSecurity Response Team.", "title": "Topic" }, { "category": "general", "text": "MySQL is a multi-user, multi-threaded SQL database server. MySQL is a\nclient/server implementation consisting of a server daemon (mysqld), and\nmany different client programs and libraries.\n\nMySQL did not require privileges such as \"SELECT\" for the source table in a\n\"CREATE TABLE LIKE\" statement. An authenticated user could obtain sensitive\ninformation, such as the table structure. (CVE-2007-3781)\n\nA flaw was discovered in MySQL that allowed an authenticated user to gain\nupdate privileges for a table in another database, via a view that refers\nto the external table. (CVE-2007-3782)\n\nMySQL did not require the \"DROP\" privilege for \"RENAME TABLE\" statements.\nAn authenticated user could use this flaw to rename arbitrary tables.\n(CVE-2007-2691)\n\nA flaw was discovered in the mysql_change_db function when returning from\nSQL SECURITY INVOKER stored routines. An authenticated user could use this\nflaw to gain database privileges. (CVE-2007-2692)\n\nMySQL allowed an authenticated user to bypass logging mechanisms via SQL\nqueries that contain the NULL character, which were not properly handled by\nthe mysql_real_query function. (CVE-2006-0903)\n\nMySQL allowed an authenticated user to access a table through a previously\ncreated MERGE table, even after the user\u0027s privileges were revoked from\nthe original table, which might violate intended security policy. This is\naddressed by allowing the MERGE storage engine to be disabled, which can\nbe done by running mysqld with the \"--skip-merge\" option. (CVE-2006-4031)\n\nMySQL evaluated arguments in the wrong security context, which allowed an\nauthenticated user to gain privileges through a routine that had been made\navailable using \"GRANT EXECUTE\". (CVE-2006-4227)\n\nMultiple flaws in MySQL allowed an authenticated user to cause the MySQL\ndaemon to crash via crafted SQL queries. This only caused a temporary\ndenial of service, as the MySQL daemon is automatically restarted after the\ncrash. (CVE-2006-7232, CVE-2007-1420, CVE-2007-2583)\n\nAs well, these updated packages fix the following bugs:\n\n* a separate counter was used for \"insert delayed\" statements, which caused\nrows to be discarded. In these updated packages, \"insert delayed\"\nstatements no longer use a separate counter, which resolves this issue.\n\n* due to a bug in the Native POSIX Thread Library, in certain situations,\n\"flush tables\" caused a deadlock on tables that had a read lock. The mysqld\ndaemon had to be killed forcefully. Now, \"COND_refresh\" has been replaced\nwith \"COND_global_read_lock\", which resolves this issue.\n\n* mysqld crashed if a query for an unsigned column type contained a\nnegative value for a \"WHERE [column] NOT IN\" subquery.\n\n* in master and slave server situations, specifying \"on duplicate key\nupdate\" for \"insert\" statements did not update slave servers.\n\n* in the mysql client, empty strings were displayed as \"NULL\". For\nexample, running \"insert into [table-name] values (\u0027 \u0027);\" resulted in a\n\"NULL\" entry being displayed when querying the table using \"select * from\n[table-name];\".\n\n* a bug in the optimizer code resulted in certain queries executing much\nslower than expected.\n\n* on 64-bit PowerPC architectures, MySQL did not calculate the thread stack\nsize correctly, which could have caused MySQL to crash when overly-complex\nqueries were used.\n\nNote: these updated packages upgrade MySQL to version 5.0.45. For a full\nlist of bug fixes and enhancements, refer to the MySQL release notes:\nhttp://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0.html\n\nAll mysql users are advised to upgrade to these updated packages, which\nresolve these issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2008:0364", "url": "https://access.redhat.com/errata/RHSA-2008:0364" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#low", "url": "https://access.redhat.com/security/updates/classification/#low" }, { "category": "external", "summary": "194613", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=194613" }, { "category": "external", "summary": "202246", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=202246" }, { "category": "external", "summary": "216427", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=216427" }, { "category": "external", "summary": "232603", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=232603" }, { "category": "external", "summary": "240813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=240813" }, { "category": "external", "summary": "241688", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=241688" }, { "category": "external", "summary": "241689", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=241689" }, { "category": "external", "summary": "248553", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=248553" }, { "category": "external", "summary": "254012", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=254012" }, { "category": "external", "summary": "256501", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=256501" }, { "category": "external", "summary": "349121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=349121" }, { "category": "external", "summary": "434264", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=434264" }, { "category": "external", "summary": "435391", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=435391" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2008/rhsa-2008_0364.json" } ], "title": "Red Hat Security Advisory: mysql security and bug fix update", "tracking": { "current_release_date": "2024-11-22T01:59:09+00:00", "generator": { "date": "2024-11-22T01:59:09+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2008:0364", "initial_release_date": "2008-05-20T12:44:00+00:00", "revision_history": [ { "date": "2008-05-20T12:44:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2008-05-20T08:44:41+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T01:59:09+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client_workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:5.0.45-7.el5.x86_64", "product": { "name": "mysql-debuginfo-0:5.0.45-7.el5.x86_64", "product_id": "mysql-debuginfo-0:5.0.45-7.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.45-7.el5?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.45-7.el5.x86_64", "product": { "name": "mysql-bench-0:5.0.45-7.el5.x86_64", "product_id": "mysql-bench-0:5.0.45-7.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.45-7.el5?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.45-7.el5.x86_64", "product": { "name": "mysql-server-0:5.0.45-7.el5.x86_64", "product_id": "mysql-server-0:5.0.45-7.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.45-7.el5?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.45-7.el5.x86_64", "product": { "name": "mysql-test-0:5.0.45-7.el5.x86_64", "product_id": "mysql-test-0:5.0.45-7.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.45-7.el5?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.45-7.el5.x86_64", "product": { "name": "mysql-devel-0:5.0.45-7.el5.x86_64", "product_id": "mysql-devel-0:5.0.45-7.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.45-7.el5?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-0:5.0.45-7.el5.x86_64", "product": { "name": "mysql-0:5.0.45-7.el5.x86_64", "product_id": "mysql-0:5.0.45-7.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.45-7.el5?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:5.0.45-7.el5.i386", "product": { "name": "mysql-debuginfo-0:5.0.45-7.el5.i386", "product_id": "mysql-debuginfo-0:5.0.45-7.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.45-7.el5?arch=i386" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.45-7.el5.i386", "product": { "name": "mysql-devel-0:5.0.45-7.el5.i386", "product_id": "mysql-devel-0:5.0.45-7.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.45-7.el5?arch=i386" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.45-7.el5.i386", "product": { "name": "mysql-bench-0:5.0.45-7.el5.i386", "product_id": "mysql-bench-0:5.0.45-7.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.45-7.el5?arch=i386" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.45-7.el5.i386", "product": { "name": "mysql-server-0:5.0.45-7.el5.i386", "product_id": "mysql-server-0:5.0.45-7.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.45-7.el5?arch=i386" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.45-7.el5.i386", "product": { "name": "mysql-test-0:5.0.45-7.el5.i386", "product_id": "mysql-test-0:5.0.45-7.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.45-7.el5?arch=i386" } } }, { "category": "product_version", "name": "mysql-0:5.0.45-7.el5.i386", "product": { "name": "mysql-0:5.0.45-7.el5.i386", "product_id": "mysql-0:5.0.45-7.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.45-7.el5?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "mysql-0:5.0.45-7.el5.src", "product": { "name": "mysql-0:5.0.45-7.el5.src", "product_id": "mysql-0:5.0.45-7.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.45-7.el5?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:5.0.45-7.el5.ia64", "product": { "name": "mysql-debuginfo-0:5.0.45-7.el5.ia64", "product_id": "mysql-debuginfo-0:5.0.45-7.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.45-7.el5?arch=ia64" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.45-7.el5.ia64", "product": { "name": "mysql-bench-0:5.0.45-7.el5.ia64", "product_id": "mysql-bench-0:5.0.45-7.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.45-7.el5?arch=ia64" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.45-7.el5.ia64", "product": { "name": "mysql-server-0:5.0.45-7.el5.ia64", "product_id": "mysql-server-0:5.0.45-7.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.45-7.el5?arch=ia64" } } }, { "category": "product_version", "name": "mysql-0:5.0.45-7.el5.ia64", "product": { "name": "mysql-0:5.0.45-7.el5.ia64", "product_id": "mysql-0:5.0.45-7.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.45-7.el5?arch=ia64" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.45-7.el5.ia64", "product": { "name": "mysql-test-0:5.0.45-7.el5.ia64", "product_id": "mysql-test-0:5.0.45-7.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.45-7.el5?arch=ia64" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.45-7.el5.ia64", "product": { "name": "mysql-devel-0:5.0.45-7.el5.ia64", "product_id": "mysql-devel-0:5.0.45-7.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.45-7.el5?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:5.0.45-7.el5.ppc64", "product": { "name": "mysql-debuginfo-0:5.0.45-7.el5.ppc64", "product_id": "mysql-debuginfo-0:5.0.45-7.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.45-7.el5?arch=ppc64" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.45-7.el5.ppc64", "product": { "name": "mysql-server-0:5.0.45-7.el5.ppc64", "product_id": "mysql-server-0:5.0.45-7.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.45-7.el5?arch=ppc64" } } }, { "category": "product_version", "name": "mysql-0:5.0.45-7.el5.ppc64", "product": { "name": "mysql-0:5.0.45-7.el5.ppc64", "product_id": "mysql-0:5.0.45-7.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.45-7.el5?arch=ppc64" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.45-7.el5.ppc64", "product": { "name": "mysql-devel-0:5.0.45-7.el5.ppc64", "product_id": "mysql-devel-0:5.0.45-7.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.45-7.el5?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:5.0.45-7.el5.ppc", "product": { "name": "mysql-debuginfo-0:5.0.45-7.el5.ppc", "product_id": "mysql-debuginfo-0:5.0.45-7.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.45-7.el5?arch=ppc" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.45-7.el5.ppc", "product": { "name": "mysql-bench-0:5.0.45-7.el5.ppc", "product_id": "mysql-bench-0:5.0.45-7.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.45-7.el5?arch=ppc" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.45-7.el5.ppc", "product": { "name": "mysql-server-0:5.0.45-7.el5.ppc", "product_id": "mysql-server-0:5.0.45-7.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.45-7.el5?arch=ppc" } } }, { "category": "product_version", "name": "mysql-0:5.0.45-7.el5.ppc", "product": { "name": "mysql-0:5.0.45-7.el5.ppc", "product_id": "mysql-0:5.0.45-7.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.45-7.el5?arch=ppc" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.45-7.el5.ppc", "product": { "name": "mysql-test-0:5.0.45-7.el5.ppc", "product_id": "mysql-test-0:5.0.45-7.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.45-7.el5?arch=ppc" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.45-7.el5.ppc", "product": { "name": "mysql-devel-0:5.0.45-7.el5.ppc", "product_id": "mysql-devel-0:5.0.45-7.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.45-7.el5?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:5.0.45-7.el5.s390x", "product": { "name": "mysql-debuginfo-0:5.0.45-7.el5.s390x", "product_id": "mysql-debuginfo-0:5.0.45-7.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.45-7.el5?arch=s390x" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.45-7.el5.s390x", "product": { "name": "mysql-bench-0:5.0.45-7.el5.s390x", "product_id": "mysql-bench-0:5.0.45-7.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.45-7.el5?arch=s390x" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.45-7.el5.s390x", "product": { "name": "mysql-server-0:5.0.45-7.el5.s390x", "product_id": "mysql-server-0:5.0.45-7.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.45-7.el5?arch=s390x" } } }, { "category": "product_version", "name": "mysql-0:5.0.45-7.el5.s390x", "product": { "name": "mysql-0:5.0.45-7.el5.s390x", "product_id": "mysql-0:5.0.45-7.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.45-7.el5?arch=s390x" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.45-7.el5.s390x", "product": { "name": "mysql-test-0:5.0.45-7.el5.s390x", "product_id": "mysql-test-0:5.0.45-7.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.45-7.el5?arch=s390x" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.45-7.el5.s390x", "product": { "name": "mysql-devel-0:5.0.45-7.el5.s390x", "product_id": "mysql-devel-0:5.0.45-7.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.45-7.el5?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:5.0.45-7.el5.s390", "product": { "name": "mysql-debuginfo-0:5.0.45-7.el5.s390", "product_id": "mysql-debuginfo-0:5.0.45-7.el5.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.45-7.el5?arch=s390" } } }, { "category": "product_version", "name": "mysql-0:5.0.45-7.el5.s390", "product": { "name": "mysql-0:5.0.45-7.el5.s390", "product_id": "mysql-0:5.0.45-7.el5.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.45-7.el5?arch=s390" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.45-7.el5.s390", "product": { "name": "mysql-devel-0:5.0.45-7.el5.s390", "product_id": "mysql-devel-0:5.0.45-7.el5.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.45-7.el5?arch=s390" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64" }, "product_reference": "mysql-0:5.0.45-7.el5.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.45-7.el5.s390" }, "product_reference": "mysql-0:5.0.45-7.el5.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.src as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.45-7.el5.src" }, "product_reference": "mysql-0:5.0.45-7.el5.src", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-bench-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-bench-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-bench-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-bench-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-bench-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-server-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-server-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-server-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64" }, "product_reference": "mysql-server-0:5.0.45-7.el5.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-server-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-server-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-test-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-test-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-test-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-test-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-test-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.45-7.el5.ppc64" }, "product_reference": "mysql-0:5.0.45-7.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.45-7.el5.s390" }, "product_reference": "mysql-0:5.0.45-7.el5.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.45-7.el5.src" }, "product_reference": "mysql-0:5.0.45-7.el5.src", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-bench-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-bench-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-bench-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-bench-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-bench-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-bench-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-bench-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-bench-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-bench-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-bench-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.45-7.el5.ppc64" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.45-7.el5.s390" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-server-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-server-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-server-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.45-7.el5.ppc64" }, "product_reference": "mysql-server-0:5.0.45-7.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-server-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-server-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-test-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-test-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-test-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-test-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-test-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-test-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-test-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-test-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-test-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-test-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.45-7.el5.ppc64" }, "product_reference": "mysql-0:5.0.45-7.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.45-7.el5.s390" }, "product_reference": "mysql-0:5.0.45-7.el5.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.45-7.el5.src" }, "product_reference": "mysql-0:5.0.45-7.el5.src", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-bench-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-bench-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-bench-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-bench-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-bench-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-bench-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-bench-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-bench-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-bench-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-bench-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-debuginfo-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.45-7.el5.ppc64" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.45-7.el5.s390" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-devel-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-server-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-server-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-server-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.45-7.el5.ppc64" }, "product_reference": "mysql-server-0:5.0.45-7.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-server-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-server-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.45-7.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-test-0:5.0.45-7.el5.i386" }, "product_reference": "mysql-test-0:5.0.45-7.el5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.45-7.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-test-0:5.0.45-7.el5.ia64" }, "product_reference": "mysql-test-0:5.0.45-7.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.45-7.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-test-0:5.0.45-7.el5.ppc" }, "product_reference": "mysql-test-0:5.0.45-7.el5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.45-7.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-test-0:5.0.45-7.el5.s390x" }, "product_reference": "mysql-test-0:5.0.45-7.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.45-7.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-test-0:5.0.45-7.el5.x86_64" }, "product_reference": "mysql-test-0:5.0.45-7.el5.x86_64", "relates_to_product_reference": "5Server" } ] }, "vulnerabilities": [ { "cve": "CVE-2006-0903", "discovery_date": "2006-02-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "194613" } ], "notes": [ { "category": "description", "text": "MySQL 5.0.18 and earlier allows local users to bypass logging mechanisms via SQL queries that contain the NULL character, which are not properly handled by the mysql_real_query function. NOTE: this issue was originally reported for the mysql_query function, but the vendor states that since mysql_query expects a null character, this is not an issue for mysql_query.", "title": "Vulnerability description" }, { "category": "summary", "text": "Mysql log file obfuscation", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2006-0903" }, { "category": "external", "summary": "RHBZ#194613", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=194613" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2006-0903", "url": "https://www.cve.org/CVERecord?id=CVE-2006-0903" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-0903", "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-0903" } ], "release_date": "2006-02-20T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-05-20T12:44:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0364" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "Mysql log file obfuscation" }, { "cve": "CVE-2006-4031", "discovery_date": "2006-08-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "202246" } ], "notes": [ { "category": "description", "text": "MySQL 4.1 before 4.1.21 and 5.0 before 5.0.24 allows a local user to access a table through a previously created MERGE table, even after the user\u0027s privileges are revoked for the original table, which might violate intended security policy.", "title": "Vulnerability description" }, { "category": "summary", "text": "MySQL improper permission revocation", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect mysql packages as shipped with Red Hat Enterprise Linux 2.1 or 3", "title": "Statement" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2006-4031" }, { "category": "external", "summary": "RHBZ#202246", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=202246" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2006-4031", "url": "https://www.cve.org/CVERecord?id=CVE-2006-4031" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-4031", "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-4031" } ], "release_date": "2005-11-23T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-05-20T12:44:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0364" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "MySQL improper permission revocation" }, { "cve": "CVE-2006-4227", "discovery_date": "2006-08-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "216427" } ], "notes": [ { "category": "description", "text": "MySQL before 5.0.25 and 5.1 before 5.1.12 evaluates arguments of suid routines in the security context of the routine\u0027s definer instead of the routine\u0027s caller, which allows remote authenticated users to gain privileges through a routine that has been made available using GRANT EXECUTE.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql improper suid argument evaluation", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the versions of MySQL as shipped with Red Hat Enterprise Linux 2.1, 3, or 4.", "title": "Statement" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2006-4227" }, { "category": "external", "summary": "RHBZ#216427", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=216427" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2006-4227", "url": "https://www.cve.org/CVERecord?id=CVE-2006-4227" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-4227", "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-4227" } ], "release_date": "2006-03-29T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-05-20T12:44:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0364" } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "mysql improper suid argument evaluation" }, { "cve": "CVE-2006-7232", "discovery_date": "2008-02-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "434264" } ], "notes": [ { "category": "description", "text": "sql_select.cc in MySQL 5.0.x before 5.0.32 and 5.1.x before 5.1.14 allows remote authenticated users to cause a denial of service (crash) via an EXPLAIN SELECT FROM on the INFORMATION_SCHEMA table, as originally demonstrated using ORDER BY.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: daemon crash via EXPLAIN on queries on information schema", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect the MySQL packages as shipped in Red Hat Enterprise Linux 2.1, 3, and 4 as they did not support INFORMATION_SCHEMA, introduced in MySQL version 5.\n\nThe MySQL packages as shipped in Red Hat Application Stack v1 and v2 are based on upstream version which has the fix included.", "title": "Statement" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2006-7232" }, { "category": "external", "summary": "RHBZ#434264", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=434264" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2006-7232", "url": "https://www.cve.org/CVERecord?id=CVE-2006-7232" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-7232", "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-7232" } ], "release_date": "2006-09-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-05-20T12:44:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0364" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "mysql: daemon crash via EXPLAIN on queries on information schema" }, { "cve": "CVE-2007-1420", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2007-03-12T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "232603" } ], "notes": [ { "category": "description", "text": "MySQL 5.x before 5.0.36 allows local users to cause a denial of service (database crash) by performing information_schema table subselects and using ORDER BY to sort a single-row result, which prevents certain structure elements from being initialized and triggers a NULL dereference in the filesort function.", "title": "Vulnerability description" }, { "category": "summary", "text": "Single MySQL worker can be crashed (NULL deref) with certain SELECT statements", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect mysql packages as shipped in Red Hat Enterprise Linux 2.1, 3, and 4.", "title": "Statement" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-1420" }, { "category": "external", "summary": "RHBZ#232603", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=232603" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-1420", "url": "https://www.cve.org/CVERecord?id=CVE-2007-1420" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-1420", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-1420" } ], "release_date": "2007-03-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-05-20T12:44:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0364" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "Single MySQL worker can be crashed (NULL deref) with certain SELECT statements" }, { "cve": "CVE-2007-2583", "discovery_date": "2007-05-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "240813" } ], "notes": [ { "category": "description", "text": "The in_decimal::set function in item_cmpfunc.cc in MySQL before 5.0.40, and 5.1 before 5.1.18-beta, allows context-dependent attackers to cause a denial of service (crash) via a crafted IF clause that results in a divide-by-zero error and a NULL pointer dereference.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: DoS via statement with crafted IF clause", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect mysql packages as shipped in Red Hat Enterprise Linux 2.1, 3, and 4.", "title": "Statement" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-2583" }, { "category": "external", "summary": "RHBZ#240813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=240813" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-2583", "url": "https://www.cve.org/CVERecord?id=CVE-2007-2583" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-2583", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2583" } ], "release_date": "2007-03-29T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-05-20T12:44:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0364" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "mysql: DoS via statement with crafted IF clause" }, { "cve": "CVE-2007-2691", "discovery_date": "2007-05-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "241688" } ], "notes": [ { "category": "description", "text": "MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql DROP privilege not enforced when renaming tables", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-2691" }, { "category": "external", "summary": "RHBZ#241688", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=241688" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-2691", "url": "https://www.cve.org/CVERecord?id=CVE-2007-2691" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-2691", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2691" } ], "release_date": "2007-05-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-05-20T12:44:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0364" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "mysql DROP privilege not enforced when renaming tables" }, { "cve": "CVE-2007-2692", "discovery_date": "2007-05-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "241689" } ], "notes": [ { "category": "description", "text": "The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remote authenticated users to gain privileges.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql SECURITY INVOKER functions do not drop privileges", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect mysql packages as shipped in Red Hat Enterprise Linux 2.1, 3 and 4.", "title": "Statement" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-2692" }, { "category": "external", "summary": "RHBZ#241689", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=241689" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-2692", "url": "https://www.cve.org/CVERecord?id=CVE-2007-2692" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-2692", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2692" } ], "release_date": "2007-05-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-05-20T12:44:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0364" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "mysql SECURITY INVOKER functions do not drop privileges" }, { "cve": "CVE-2007-3781", "discovery_date": "2007-07-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "248553" } ], "notes": [ { "category": "description", "text": "MySQL Community Server before 5.0.45 does not require privileges such as SELECT for the source table in a CREATE TABLE LIKE statement, which allows remote authenticated users to obtain sensitive information such as the table structure.", "title": "Vulnerability description" }, { "category": "summary", "text": "New release of MySQL fixes security bugs", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=248553\n\nThe Red Hat Product Security has rated this issue as having low security impact, a future update may address this flaw.", "title": "Statement" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-3781" }, { "category": "external", "summary": "RHBZ#248553", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=248553" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-3781", "url": "https://www.cve.org/CVERecord?id=CVE-2007-3781" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-3781", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-3781" } ], "release_date": "2007-07-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-05-20T12:44:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0364" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "New release of MySQL fixes security bugs" }, { "cve": "CVE-2007-3782", "discovery_date": "2007-07-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "248553" } ], "notes": [ { "category": "description", "text": "MySQL Community Server before 5.0.45 allows remote authenticated users to gain update privileges for a table in another database via a view that refers to this external table.", "title": "Vulnerability description" }, { "category": "summary", "text": "New release of MySQL fixes security bugs", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=248553\n\nThe Red Hat Product Security has rated this issue as having low security impact, a future update may address this flaw.", "title": "Statement" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-3782" }, { "category": "external", "summary": "RHBZ#248553", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=248553" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-3782", "url": "https://www.cve.org/CVERecord?id=CVE-2007-3782" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-3782", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-3782" } ], "release_date": "2007-07-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-05-20T12:44:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "5Client-Workstation:mysql-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-0:5.0.45-7.el5.src", "5Client-Workstation:mysql-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.45-7.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.i386", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.45-7.el5.x86_64", "5Client:mysql-0:5.0.45-7.el5.i386", "5Client:mysql-0:5.0.45-7.el5.ia64", "5Client:mysql-0:5.0.45-7.el5.ppc", "5Client:mysql-0:5.0.45-7.el5.ppc64", "5Client:mysql-0:5.0.45-7.el5.s390", "5Client:mysql-0:5.0.45-7.el5.s390x", "5Client:mysql-0:5.0.45-7.el5.src", "5Client:mysql-0:5.0.45-7.el5.x86_64", "5Client:mysql-bench-0:5.0.45-7.el5.i386", "5Client:mysql-bench-0:5.0.45-7.el5.ia64", "5Client:mysql-bench-0:5.0.45-7.el5.ppc", "5Client:mysql-bench-0:5.0.45-7.el5.s390x", "5Client:mysql-bench-0:5.0.45-7.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Client:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Client:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Client:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Client:mysql-devel-0:5.0.45-7.el5.i386", "5Client:mysql-devel-0:5.0.45-7.el5.ia64", "5Client:mysql-devel-0:5.0.45-7.el5.ppc", "5Client:mysql-devel-0:5.0.45-7.el5.ppc64", "5Client:mysql-devel-0:5.0.45-7.el5.s390", "5Client:mysql-devel-0:5.0.45-7.el5.s390x", "5Client:mysql-devel-0:5.0.45-7.el5.x86_64", "5Client:mysql-server-0:5.0.45-7.el5.i386", "5Client:mysql-server-0:5.0.45-7.el5.ia64", "5Client:mysql-server-0:5.0.45-7.el5.ppc", "5Client:mysql-server-0:5.0.45-7.el5.ppc64", "5Client:mysql-server-0:5.0.45-7.el5.s390x", "5Client:mysql-server-0:5.0.45-7.el5.x86_64", "5Client:mysql-test-0:5.0.45-7.el5.i386", "5Client:mysql-test-0:5.0.45-7.el5.ia64", "5Client:mysql-test-0:5.0.45-7.el5.ppc", "5Client:mysql-test-0:5.0.45-7.el5.s390x", "5Client:mysql-test-0:5.0.45-7.el5.x86_64", "5Server:mysql-0:5.0.45-7.el5.i386", "5Server:mysql-0:5.0.45-7.el5.ia64", "5Server:mysql-0:5.0.45-7.el5.ppc", "5Server:mysql-0:5.0.45-7.el5.ppc64", "5Server:mysql-0:5.0.45-7.el5.s390", "5Server:mysql-0:5.0.45-7.el5.s390x", "5Server:mysql-0:5.0.45-7.el5.src", "5Server:mysql-0:5.0.45-7.el5.x86_64", "5Server:mysql-bench-0:5.0.45-7.el5.i386", "5Server:mysql-bench-0:5.0.45-7.el5.ia64", "5Server:mysql-bench-0:5.0.45-7.el5.ppc", "5Server:mysql-bench-0:5.0.45-7.el5.s390x", "5Server:mysql-bench-0:5.0.45-7.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.i386", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ia64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc", "5Server:mysql-debuginfo-0:5.0.45-7.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390", "5Server:mysql-debuginfo-0:5.0.45-7.el5.s390x", "5Server:mysql-debuginfo-0:5.0.45-7.el5.x86_64", "5Server:mysql-devel-0:5.0.45-7.el5.i386", "5Server:mysql-devel-0:5.0.45-7.el5.ia64", "5Server:mysql-devel-0:5.0.45-7.el5.ppc", "5Server:mysql-devel-0:5.0.45-7.el5.ppc64", "5Server:mysql-devel-0:5.0.45-7.el5.s390", "5Server:mysql-devel-0:5.0.45-7.el5.s390x", "5Server:mysql-devel-0:5.0.45-7.el5.x86_64", "5Server:mysql-server-0:5.0.45-7.el5.i386", "5Server:mysql-server-0:5.0.45-7.el5.ia64", "5Server:mysql-server-0:5.0.45-7.el5.ppc", "5Server:mysql-server-0:5.0.45-7.el5.ppc64", "5Server:mysql-server-0:5.0.45-7.el5.s390x", "5Server:mysql-server-0:5.0.45-7.el5.x86_64", "5Server:mysql-test-0:5.0.45-7.el5.i386", "5Server:mysql-test-0:5.0.45-7.el5.ia64", "5Server:mysql-test-0:5.0.45-7.el5.ppc", "5Server:mysql-test-0:5.0.45-7.el5.s390x", "5Server:mysql-test-0:5.0.45-7.el5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0364" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "New release of MySQL fixes security bugs" } ] }
rhsa-2007_0894
Vulnerability from csaf_redhat
Published
2007-09-10 15:37
Modified
2024-11-22 01:59
Summary
Red Hat Security Advisory: mysql security update
Notes
Topic
Updated MySQL packages for the Red Hat Application Stack comprising the v1.2
release fixed various security issues.
The security issues in this errata are rated as having important security
impact by the Red Hat Security Response Team.
Details
On the 23rd August 2007, Red Hat Application Stack v1.2 was released. This
release contained a new version of MySQL that corrected several security
issues found in the MySQL packages of Red Hat Application Stack v1.1.
Users who have already updated to Red Hat Application Stack v1.2 will
already have the new MySQL packages and are not affected by these issues.
A flaw was discovered in MySQL's authentication protocol. A remote
unauthenticated attacker could send a specially crafted authentication
request to the MySQL server causing it to crash. (CVE-2007-3780)
MySQL did not require privileges such as SELECT for the source table in a
CREATE TABLE LIKE statement. A remote authenticated user could obtain
sensitive information such as the table structure. (CVE-2007-3781)
A flaw was discovered in MySQL that allowed remote authenticated
users to gain update privileges for a table in another database via a view
that refers to the external table (CVE-2007-3782).
A flaw was discovered in the mysql_change_db function when returning from
SQL SECURITY INVOKER stored routines. A remote authenticated user could
use this flaw to gain database privileges. (CVE-2007-2692)
MySQL did not require the DROP privilege for RENAME TABLE statements. A
remote authenticated users could use this flaw to rename arbitrary tables.
(CVE-2007-2691)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated MySQL packages for the Red Hat Application Stack comprising the v1.2\nrelease fixed various security issues.\n\nThe security issues in this errata are rated as having important security\nimpact by the Red Hat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "On the 23rd August 2007, Red Hat Application Stack v1.2 was released. This\nrelease contained a new version of MySQL that corrected several security\nissues found in the MySQL packages of Red Hat Application Stack v1.1.\n\nUsers who have already updated to Red Hat Application Stack v1.2 will\nalready have the new MySQL packages and are not affected by these issues.\n\nA flaw was discovered in MySQL\u0027s authentication protocol. A remote\nunauthenticated attacker could send a specially crafted authentication\nrequest to the MySQL server causing it to crash. (CVE-2007-3780)\n\nMySQL did not require privileges such as SELECT for the source table in a\nCREATE TABLE LIKE statement. A remote authenticated user could obtain\nsensitive information such as the table structure. (CVE-2007-3781)\n\nA flaw was discovered in MySQL that allowed remote authenticated\nusers to gain update privileges for a table in another database via a view\nthat refers to the external table (CVE-2007-3782).\n\nA flaw was discovered in the mysql_change_db function when returning from\nSQL SECURITY INVOKER stored routines. A remote authenticated user could\nuse this flaw to gain database privileges. (CVE-2007-2692)\n\nMySQL did not require the DROP privilege for RENAME TABLE statements. A\nremote authenticated users could use this flaw to rename arbitrary tables.\n(CVE-2007-2691)", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2007:0894", "url": "https://access.redhat.com/errata/RHSA-2007:0894" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "https://rhn.redhat.com/errata/RHEA-2007-0842.html", "url": "https://rhn.redhat.com/errata/RHEA-2007-0842.html" }, { "category": "external", "summary": "241688", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=241688" }, { "category": "external", "summary": "241689", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=241689" }, { "category": "external", "summary": "248553", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=248553" }, { "category": "external", "summary": "254108", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=254108" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_0894.json" } ], "title": "Red Hat Security Advisory: mysql security update", "tracking": { "current_release_date": "2024-11-22T01:59:04+00:00", "generator": { "date": "2024-11-22T01:59:04+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2007:0894", "initial_release_date": "2007-09-10T15:37:00+00:00", "revision_history": [ { "date": "2007-09-10T15:37:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2007-09-10T11:37:28+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T01:59:04+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product": { "name": "Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_application_stack:1" } } }, { "category": "product_name", "name": "Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product": { "name": "Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_application_stack:1" } } } ], "category": "product_family", "name": "Red Hat Application Stack" }, { "branches": [ { "category": "product_version", "name": "mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "product": { "name": "mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "product_id": "mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.44-1.el4s1.1?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "product": { "name": "mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "product_id": "mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-cluster@5.0.44-1.el4s1.1?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.44-1.el4s1.1.x86_64", "product": { "name": "mysql-server-0:5.0.44-1.el4s1.1.x86_64", "product_id": "mysql-server-0:5.0.44-1.el4s1.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.44-1.el4s1.1?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.44-1.el4s1.1.x86_64", "product": { "name": "mysql-test-0:5.0.44-1.el4s1.1.x86_64", "product_id": "mysql-test-0:5.0.44-1.el4s1.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.44-1.el4s1.1?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "product": { "name": "mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "product_id": "mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.44-1.el4s1.1?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "product": { "name": "mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "product_id": "mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.44-1.el4s1.1?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "product": { "name": "mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "product_id": "mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-libs@5.0.44-1.el4s1.1?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-0:5.0.44-1.el4s1.1.x86_64", "product": { "name": "mysql-0:5.0.44-1.el4s1.1.x86_64", "product_id": "mysql-0:5.0.44-1.el4s1.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.44-1.el4s1.1?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "product": { "name": "mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "product_id": "mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.44-1.el4s1.1?arch=i386" } } }, { "category": "product_version", "name": "mysql-libs-0:5.0.44-1.el4s1.1.i386", "product": { "name": "mysql-libs-0:5.0.44-1.el4s1.1.i386", "product_id": "mysql-libs-0:5.0.44-1.el4s1.1.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-libs@5.0.44-1.el4s1.1?arch=i386" } } }, { "category": "product_version", "name": "mysql-0:5.0.44-1.el4s1.1.i386", "product": { "name": "mysql-0:5.0.44-1.el4s1.1.i386", "product_id": "mysql-0:5.0.44-1.el4s1.1.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.44-1.el4s1.1?arch=i386" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.44-1.el4s1.1.i386", "product": { "name": "mysql-devel-0:5.0.44-1.el4s1.1.i386", "product_id": "mysql-devel-0:5.0.44-1.el4s1.1.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.44-1.el4s1.1?arch=i386" } } }, { "category": "product_version", "name": "mysql-cluster-0:5.0.44-1.el4s1.1.i386", "product": { "name": "mysql-cluster-0:5.0.44-1.el4s1.1.i386", "product_id": "mysql-cluster-0:5.0.44-1.el4s1.1.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-cluster@5.0.44-1.el4s1.1?arch=i386" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.44-1.el4s1.1.i386", "product": { "name": "mysql-server-0:5.0.44-1.el4s1.1.i386", "product_id": "mysql-server-0:5.0.44-1.el4s1.1.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.44-1.el4s1.1?arch=i386" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.44-1.el4s1.1.i386", "product": { "name": "mysql-test-0:5.0.44-1.el4s1.1.i386", "product_id": "mysql-test-0:5.0.44-1.el4s1.1.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.44-1.el4s1.1?arch=i386" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.44-1.el4s1.1.i386", "product": { "name": "mysql-bench-0:5.0.44-1.el4s1.1.i386", "product_id": "mysql-bench-0:5.0.44-1.el4s1.1.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.44-1.el4s1.1?arch=i386" } } } ], "category": "architecture", "name": "i386" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.44-1.el4s1.1.i386 as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386" }, "product_reference": "mysql-0:5.0.44-1.el4s1.1.i386", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.44-1.el4s1.1.x86_64 as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64" }, "product_reference": "mysql-0:5.0.44-1.el4s1.1.x86_64", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.44-1.el4s1.1.i386 as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386" }, "product_reference": "mysql-bench-0:5.0.44-1.el4s1.1.i386", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.44-1.el4s1.1.x86_64 as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64" }, "product_reference": "mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-cluster-0:5.0.44-1.el4s1.1.i386 as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386" }, "product_reference": "mysql-cluster-0:5.0.44-1.el4s1.1.i386", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-cluster-0:5.0.44-1.el4s1.1.x86_64 as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64" }, "product_reference": "mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.44-1.el4s1.1.i386 as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386" }, "product_reference": "mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64 as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64" }, "product_reference": "mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.44-1.el4s1.1.i386 as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386" }, "product_reference": "mysql-devel-0:5.0.44-1.el4s1.1.i386", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.44-1.el4s1.1.x86_64 as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64" }, "product_reference": "mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-libs-0:5.0.44-1.el4s1.1.i386 as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386" }, "product_reference": "mysql-libs-0:5.0.44-1.el4s1.1.i386", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-libs-0:5.0.44-1.el4s1.1.x86_64 as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64" }, "product_reference": "mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.44-1.el4s1.1.i386 as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386" }, "product_reference": "mysql-server-0:5.0.44-1.el4s1.1.i386", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.44-1.el4s1.1.x86_64 as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64" }, "product_reference": "mysql-server-0:5.0.44-1.el4s1.1.x86_64", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.44-1.el4s1.1.i386 as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386" }, "product_reference": "mysql-test-0:5.0.44-1.el4s1.1.i386", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.44-1.el4s1.1.x86_64 as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64" }, "product_reference": "mysql-test-0:5.0.44-1.el4s1.1.x86_64", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.44-1.el4s1.1.i386 as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386" }, "product_reference": "mysql-0:5.0.44-1.el4s1.1.i386", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.44-1.el4s1.1.x86_64 as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64" }, "product_reference": "mysql-0:5.0.44-1.el4s1.1.x86_64", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.44-1.el4s1.1.i386 as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386" }, "product_reference": "mysql-bench-0:5.0.44-1.el4s1.1.i386", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.44-1.el4s1.1.x86_64 as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64" }, "product_reference": "mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-cluster-0:5.0.44-1.el4s1.1.i386 as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386" }, "product_reference": "mysql-cluster-0:5.0.44-1.el4s1.1.i386", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-cluster-0:5.0.44-1.el4s1.1.x86_64 as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64" }, "product_reference": "mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.44-1.el4s1.1.i386 as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386" }, "product_reference": "mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64 as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64" }, "product_reference": "mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.44-1.el4s1.1.i386 as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386" }, "product_reference": "mysql-devel-0:5.0.44-1.el4s1.1.i386", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.44-1.el4s1.1.x86_64 as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64" }, "product_reference": "mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-libs-0:5.0.44-1.el4s1.1.i386 as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386" }, "product_reference": "mysql-libs-0:5.0.44-1.el4s1.1.i386", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-libs-0:5.0.44-1.el4s1.1.x86_64 as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64" }, "product_reference": "mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.44-1.el4s1.1.i386 as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386" }, "product_reference": "mysql-server-0:5.0.44-1.el4s1.1.i386", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.44-1.el4s1.1.x86_64 as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64" }, "product_reference": "mysql-server-0:5.0.44-1.el4s1.1.x86_64", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.44-1.el4s1.1.i386 as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386" }, "product_reference": "mysql-test-0:5.0.44-1.el4s1.1.i386", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.44-1.el4s1.1.x86_64 as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64" }, "product_reference": "mysql-test-0:5.0.44-1.el4s1.1.x86_64", "relates_to_product_reference": "4ES-RHWAS" } ] }, "vulnerabilities": [ { "cve": "CVE-2007-2691", "discovery_date": "2007-05-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "241688" } ], "notes": [ { "category": "description", "text": "MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql DROP privilege not enforced when renaming tables", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-2691" }, { "category": "external", "summary": "RHBZ#241688", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=241688" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-2691", "url": "https://www.cve.org/CVERecord?id=CVE-2007-2691" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-2691", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2691" } ], "release_date": "2007-05-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2007-09-10T15:37:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2007:0894" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "mysql DROP privilege not enforced when renaming tables" }, { "cve": "CVE-2007-2692", "discovery_date": "2007-05-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "241689" } ], "notes": [ { "category": "description", "text": "The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remote authenticated users to gain privileges.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql SECURITY INVOKER functions do not drop privileges", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect mysql packages as shipped in Red Hat Enterprise Linux 2.1, 3 and 4.", "title": "Statement" } ], "product_status": { "fixed": [ "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-2692" }, { "category": "external", "summary": "RHBZ#241689", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=241689" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-2692", "url": "https://www.cve.org/CVERecord?id=CVE-2007-2692" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-2692", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2692" } ], "release_date": "2007-05-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2007-09-10T15:37:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2007:0894" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "mysql SECURITY INVOKER functions do not drop privileges" }, { "cve": "CVE-2007-3780", "discovery_date": "2007-08-24T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "254108" } ], "notes": [ { "category": "description", "text": "MySQL Community Server before 5.0.45 allows remote attackers to cause a denial of service (daemon crash) via a malformed password packet in the connection protocol.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql malformed password crasher", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-3780" }, { "category": "external", "summary": "RHBZ#254108", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=254108" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-3780", "url": "https://www.cve.org/CVERecord?id=CVE-2007-3780" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-3780", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-3780" } ], "release_date": "2007-07-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2007-09-10T15:37:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2007:0894" } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "mysql malformed password crasher" }, { "cve": "CVE-2007-3781", "discovery_date": "2007-07-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "248553" } ], "notes": [ { "category": "description", "text": "MySQL Community Server before 5.0.45 does not require privileges such as SELECT for the source table in a CREATE TABLE LIKE statement, which allows remote authenticated users to obtain sensitive information such as the table structure.", "title": "Vulnerability description" }, { "category": "summary", "text": "New release of MySQL fixes security bugs", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=248553\n\nThe Red Hat Product Security has rated this issue as having low security impact, a future update may address this flaw.", "title": "Statement" } ], "product_status": { "fixed": [ "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-3781" }, { "category": "external", "summary": "RHBZ#248553", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=248553" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-3781", "url": "https://www.cve.org/CVERecord?id=CVE-2007-3781" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-3781", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-3781" } ], "release_date": "2007-07-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2007-09-10T15:37:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2007:0894" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "New release of MySQL fixes security bugs" }, { "cve": "CVE-2007-3782", "discovery_date": "2007-07-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "248553" } ], "notes": [ { "category": "description", "text": "MySQL Community Server before 5.0.45 allows remote authenticated users to gain update privileges for a table in another database via a view that refers to this external table.", "title": "Vulnerability description" }, { "category": "summary", "text": "New release of MySQL fixes security bugs", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=248553\n\nThe Red Hat Product Security has rated this issue as having low security impact, a future update may address this flaw.", "title": "Statement" } ], "product_status": { "fixed": [ "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-3782" }, { "category": "external", "summary": "RHBZ#248553", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=248553" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-3782", "url": "https://www.cve.org/CVERecord?id=CVE-2007-3782" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-3782", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-3782" } ], "release_date": "2007-07-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2007-09-10T15:37:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4AS-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-bench-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-cluster-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-debuginfo-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-devel-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-libs-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-server-0:5.0.44-1.el4s1.1.x86_64", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.i386", "4ES-RHWAS:mysql-test-0:5.0.44-1.el4s1.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2007:0894" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "New release of MySQL fixes security bugs" } ] }
ghsa-p759-pfvw-7vmx
Vulnerability from github
Published
2022-05-01 18:06
Modified
2022-05-01 18:06
Details
The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remote authenticated users to gain privileges.
{ "affected": [], "aliases": [ "CVE-2007-2692" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2007-05-16T01:19:00Z", "severity": "MODERATE" }, "details": "The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remote authenticated users to gain privileges.", "id": "GHSA-p759-pfvw-7vmx", "modified": "2022-05-01T18:06:23Z", "published": "2022-05-01T18:06:23Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2692" }, { "type": "WEB", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34348" }, { "type": "WEB", "url": "https://issues.rpath.com/browse/RPL-1536" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9166" }, { "type": "WEB", "url": "http://bugs.mysql.com/bug.php?id=27337" }, { "type": "WEB", "url": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-18.html" }, { "type": "WEB", "url": "http://lists.mysql.com/announce/470" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html" }, { "type": "WEB", "url": "http://osvdb.org/34765" }, { "type": "WEB", "url": "http://secunia.com/advisories/25301" }, { "type": "WEB", "url": "http://secunia.com/advisories/26073" }, { "type": "WEB", "url": "http://secunia.com/advisories/26430" }, { "type": "WEB", "url": "http://secunia.com/advisories/27823" }, { "type": "WEB", "url": "http://secunia.com/advisories/28637" }, { "type": "WEB", "url": "http://secunia.com/advisories/28838" }, { "type": "WEB", "url": "http://secunia.com/advisories/29443" }, { "type": "WEB", "url": "http://secunia.com/advisories/30351" }, { "type": "WEB", "url": "http://www.debian.org/security/2007/dsa-1413" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:028" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2007-0894.html" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2008-0364.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/archive/1/473874/100/0/threaded" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/24011" }, { "type": "WEB", "url": "http://www.securitytracker.com/id?1018070" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/usn-588-1" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2007/1804" } ], "schema_version": "1.4.0", "severity": [] }
gsd-2007-2692
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remote authenticated users to gain privileges.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2007-2692", "description": "The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remote authenticated users to gain privileges.", "id": "GSD-2007-2692", "references": [ "https://www.suse.com/security/cve/CVE-2007-2692.html", "https://www.debian.org/security/2007/dsa-1413", "https://access.redhat.com/errata/RHSA-2008:0364", "https://access.redhat.com/errata/RHSA-2007:0894", "https://linux.oracle.com/cve/CVE-2007-2692.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2007-2692" ], "details": "The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remote authenticated users to gain privileges.", "id": "GSD-2007-2692", "modified": "2023-12-13T01:21:37.667881Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-2692", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remote authenticated users to gain privileges." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "27823", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/27823" }, { "name": "29443", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/29443" }, { "name": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-18.html", "refsource": "CONFIRM", "url": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-18.html" }, { "name": "RHSA-2007:0894", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2007-0894.html" }, { "name": "26073", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26073" }, { "name": "MDVSA-2008:028", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:028" }, { "name": "[announce] 20070712 MySQL Community Server 5.0.45 has been released!", "refsource": "MLIST", "url": "http://lists.mysql.com/announce/470" }, { "name": "ADV-2007-1804", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/1804" }, { "name": "oval:org.mitre.oval:def:9166", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9166" }, { "name": "20070717 rPSA-2007-0143-1 mysql mysql-bench mysql-server", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/473874/100/0/threaded" }, { "name": "1018070", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1018070" }, { "name": "mysql-changedb-privilege-escalation(34348)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34348" }, { "name": "25301", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/25301" }, { "name": "DSA-1413", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2007/dsa-1413" }, { "name": "https://issues.rpath.com/browse/RPL-1536", "refsource": "CONFIRM", "url": "https://issues.rpath.com/browse/RPL-1536" }, { "name": "28637", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/28637" }, { "name": "30351", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/30351" }, { "name": "http://bugs.mysql.com/bug.php?id=27337", "refsource": "MISC", "url": "http://bugs.mysql.com/bug.php?id=27337" }, { "name": "26430", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26430" }, { "name": "28838", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/28838" }, { "name": "USN-588-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/usn-588-1" }, { "name": "34765", "refsource": "OSVDB", "url": "http://osvdb.org/34765" }, { "name": "SUSE-SR:2008:003", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html" }, { "name": "RHSA-2008:0364", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2008-0364.html" }, { "name": "24011", "refsource": "BID", "url": "http://www.securityfocus.com/bid/24011" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.0:alpha:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.3:beta:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.5.0.21:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.1.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.20:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.21:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.33:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.37:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.19:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.24:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.27:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.22:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.22.1.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-2692" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remote authenticated users to gain privileges." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "NVD-CWE-Other" } ] } ] }, "references": { "reference_data": [ { "name": "http://bugs.mysql.com/bug.php?id=27337", "refsource": "MISC", "tags": [], "url": "http://bugs.mysql.com/bug.php?id=27337" }, { "name": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-18.html", "refsource": "CONFIRM", "tags": [], "url": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-18.html" }, { "name": "24011", "refsource": "BID", "tags": [], "url": "http://www.securityfocus.com/bid/24011" }, { "name": "1018070", "refsource": "SECTRACK", "tags": [], "url": "http://www.securitytracker.com/id?1018070" }, { "name": "25301", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/25301" }, { "name": "[announce] 20070712 MySQL Community Server 5.0.45 has been released!", "refsource": "MLIST", "tags": [], "url": "http://lists.mysql.com/announce/470" }, { "name": "https://issues.rpath.com/browse/RPL-1536", "refsource": "CONFIRM", "tags": [], "url": "https://issues.rpath.com/browse/RPL-1536" }, { "name": "DSA-1413", "refsource": "DEBIAN", "tags": [], "url": "http://www.debian.org/security/2007/dsa-1413" }, { "name": "RHSA-2007:0894", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2007-0894.html" }, { "name": "26073", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/26073" }, { "name": "26430", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/26430" }, { "name": "27823", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/27823" }, { "name": "MDVSA-2008:028", "refsource": "MANDRIVA", "tags": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:028" }, { "name": "28637", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/28637" }, { "name": "SUSE-SR:2008:003", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html" }, { "name": "28838", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/28838" }, { "name": "USN-588-1", "refsource": "UBUNTU", "tags": [], "url": "http://www.ubuntu.com/usn/usn-588-1" }, { "name": "29443", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/29443" }, { "name": "30351", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/30351" }, { "name": "RHSA-2008:0364", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2008-0364.html" }, { "name": "ADV-2007-1804", "refsource": "VUPEN", "tags": [], "url": "http://www.vupen.com/english/advisories/2007/1804" }, { "name": "34765", "refsource": "OSVDB", "tags": [], "url": "http://osvdb.org/34765" }, { "name": "mysql-changedb-privilege-escalation(34348)", "refsource": "XF", "tags": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34348" }, { "name": "oval:org.mitre.oval:def:9166", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9166" }, { "name": "20070717 rPSA-2007-0143-1 mysql mysql-bench mysql-server", "refsource": "BUGTRAQ", "tags": [], "url": "http://www.securityfocus.com/archive/1/473874/100/0/threaded" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P", "version": "2.0" }, "exploitabilityScore": 6.8, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false } }, "lastModifiedDate": "2019-12-17T20:16Z", "publishedDate": "2007-05-16T01:19Z" } } }
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.