Disable "binary version" functionality in VersionCheck

Bug #1285166 reported by Alexey Kopytov on 2014-02-26
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Percona XtraBackup
High
Alexey Kopytov
2.1
High
Alexey Kopytov
2.2
High
Alexey Kopytov

Bug Description

Splitting this one off from bug #1279502 as that one is more general in scope.

The most unsafe part of the VersionCheck module discussed in bug #1279502 is the binary version reporting, where a list of commands received from v.percona.com is executed with the --version switch after sanitizing the input, and their output is reported back.

This report is to disable that functionality in XtraBackup.

Related branches

lp:~akopytov/percona-xtrabackup/bug1285166-2.1
Sergei Glushchenko: Approve (g2) on 2014-02-28
lp:~akopytov/percona-xtrabackup/bug1285166-2.2
Sergei Glushchenko: Approve (g2) on 2014-02-28

CVE References

To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers