This bug was fixed in the package mysql-5.5 - 5.5.37-0ubuntu0.13.10.1
--------------- mysql-5.5 (5.5.37-0ubuntu0.13.10.1) saucy-security; urgency=medium
* SECURITY UPDATE: Update to 5.5.37 to fix security issues (LP: #1309662) - http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html - CVE-2014-0001 - CVE-2014-0384 - CVE-2014-2419 - CVE-2014-2430 - CVE-2014-2431 - CVE-2014-2432 - CVE-2014-2436 - CVE-2014-2438 - CVE-2014-2440 * Drop creation of insecure database permissions: - d/p/33_scripts__mysql_create_system_tables__no_test.patch, d/p/41_scripts__mysql_install_db.sh__no_test.patch, d/p/50_mysql-test__db_test.patch: Restored from mysql-5.1 package, inadvertently dropped in 5.5 transition. This removes the global anonymous access to the database which is a security concern. -- Marc Deslauriers <email address hidden> Sat, 19 Apr 2014 20:45:09 -0400
This bug was fixed in the package mysql-5.5 - 5.5.37- 0ubuntu0. 13.10.1
--------------- 0ubuntu0. 13.10.1) saucy-security; urgency=medium
mysql-5.5 (5.5.37-
* SECURITY UPDATE: Update to 5.5.37 to fix security issues (LP: #1309662) www.oracle. com/technetwork /topics/ security/ cpuapr2014- 1972952. html scripts_ _mysql_ create_ system_ tables_ _no_test. patch, p/41_scripts_ _mysql_ install_ db.sh__ no_test. patch, p/50_mysql- test__db_ test.patch: Restored from mysql-5.1
- http://
- CVE-2014-0001
- CVE-2014-0384
- CVE-2014-2419
- CVE-2014-2430
- CVE-2014-2431
- CVE-2014-2432
- CVE-2014-2436
- CVE-2014-2438
- CVE-2014-2440
* Drop creation of insecure database permissions:
- d/p/33_
d/
d/
package, inadvertently dropped in 5.5 transition. This
removes the global anonymous access to the database which
is a security concern.
-- Marc Deslauriers <email address hidden> Sat, 19 Apr 2014 20:45:09 -0400