[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] rPSA-2007-0107-1 mysql mysql-bench mysql-server

To: security-announce@xxxxxxxxxxxxxxx, update-announce@xxxxxxxxxxxxxxx
Subject: [Full-disclosure] rPSA-2007-0107-1 mysql mysql-bench mysql-server
From: rPath Update Announcements <announce-noreply@xxxxxxxxx>
Date: Wed, 23 May 2007 15:31:46 -0400

rPath Security Advisory: 2007-0107-1
Published: 2007-05-23
Products: rPath Linux 1
Rating: Minor
Exposure Level Classification:
    Local User Deterministic Denial of Service
Updated Versions:
    mysql=/conary.rpath.com@rpl:devel//1/5.0.41-2-0.1
    mysql-bench=/conary.rpath.com@rpl:devel//1/5.0.41-2-0.1
    mysql-server=/conary.rpath.com@rpl:devel//1/5.0.41-2-0.1

References:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2583
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1420
    https://issues.rpath.com/browse/RPL-1127
    https://issues.rpath.com/browse/RPL-1356

Description:
    Previous versions of the mysql package are vulnerable to two
    authenticated-user denial of service attacks in which specially crafted
    queries can be used to crash the server.

Copyright 2007 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] Secunia Research: eScan Products Agent Service Command Decryption Buffer Overflow
Next by Date: [Full-disclosure] rPSA-2007-0108-1 freetype
Previous by thread: [Full-disclosure] Secunia Research: eScan Products Agent Service Command Decryption Buffer Overflow
Next by thread: [Full-disclosure] rPSA-2007-0108-1 freetype
Index(es):
- Date
- Thread