* SECURITY UPDATE: buffer overflow via ProcessOldClientHello() in
handshake.cpp and input_buffer& operator>> in yassl_imp.cpp
* SECURITY UPDATE: buffer overread in HASHwithTransform::Update in hash.cpp
* debian/patches/97_SECURITY_CVE-2008-0226_0227.dpatch: properly verify
length of input (LP: #186978).
* SECURITY UPDATE: privilege escalation via crafted CREATE SQL SECURITY
DEFINER VIEW and ALTER VIEW statements
* debian/patches/98_SECURITY_CVE-2007-6303.dpatch: make sure lex->definer
is non-NULL in sql_view.cc (LP: #185039)
* debian/patches/99_view_fix-now.dpatch: update view.test and view.result to
use a static year instead of now(). These tests are not part of the build
but helps with qa-regression-testing
* SECURITY UPDATE: privilege escalation via SQL SECURITY INVOKER stored
routines
* debian/patches/100_SECURITY_CVE-2007-2692.dpatch: restore THD::db_access
when returning from stored routine by performing privilege checks in the
execution stage rather than the parsing stage. (LP: #172260)
* References
CVE-2008-0226
CVE-2008-0227
CVE-2007-6303
CVE-2007-2692 http://bugs.mysql.com/bug.php?id=27337
This bug was fixed in the package mysql-dfsg-5.0 - 5.0.38-0ubuntu1.4
---------------
mysql-dfsg-5.0 (5.0.38-0ubuntu1.4) feisty-security; urgency=low
* no change build for -security upload
mysql-dfsg-5.0 (5.0.38-0ubuntu1.3) feisty-proposed; urgency=low
* SECURITY UPDATE: buffer overflow via ProcessOldClien tHello( ) in rm::Update in hash.cpp patches/ 97_SECURITY_ CVE-2008- 0226_0227. dpatch: properly verify patches/ 98_SECURITY_ CVE-2007- 6303.dpatch: make sure lex->definer patches/ 99_view_ fix-now. dpatch: update view.test and view.result to testing patches/ 100_SECURITY_ CVE-2007- 2692.dpatch: restore THD::db_access bugs.mysql. com/bug. php?id= 27337
handshake.cpp and input_buffer& operator>> in yassl_imp.cpp
* SECURITY UPDATE: buffer overread in HASHwithTransfo
* debian/
length of input (LP: #186978).
* SECURITY UPDATE: privilege escalation via crafted CREATE SQL SECURITY
DEFINER VIEW and ALTER VIEW statements
* debian/
is non-NULL in sql_view.cc (LP: #185039)
* debian/
use a static year instead of now(). These tests are not part of the build
but helps with qa-regression-
* SECURITY UPDATE: privilege escalation via SQL SECURITY INVOKER stored
routines
* debian/
when returning from stored routine by performing privilege checks in the
execution stage rather than the parsing stage. (LP: #172260)
* References
CVE-2008-0226
CVE-2008-0227
CVE-2007-6303
CVE-2007-2692
http://
-- Jamie Strandboge <email address hidden> Wed, 19 Mar 2008 15:17:20 -0400