Home | Blog | Kontak | Komentar | Login
 
Dapatkan CD/DVD Linux
Klik disini untuk lihat daftar CD/DVD Linux

Official Partner :
- Rame Optic Tomohon
- Essilor Indonesia
 
21 December 2007, Software Aplikasi
Slackware Security Issue MySQL

Source

MySQL Community Server before 5.0.45 does not require privileges such as SELECT for the source table in a CREATE TABLE LIKE statement, which allows remote authenticated users to obtain sensitive information such as the table structure.

The convert_search_mode_to_innobase function in ha_innodb.cc in the InnoDB engine in MySQL 5.1.23-BK and earlier allows remote authenticated users to cause a denial of service (database crash) via a certain CONTAINS operation on an indexed column, which triggers an assertion error.

MySQL Community Server before 5.0.51, when a table relies on symlinks created through explicit DATA DIRECTORY and INDEX DIRECTORY options, allows remote authenticated users to overwrite system table information and gain privileges via a RENAME TABLE statement that changes the symlink to point to an existing file.

Untuk pengguna Optopro dengan OS Slackware 11.0, 12.0 dengan MySQL < 5.0.51 silahkan Patch.
Untuk informasi dan bantuan hubungi support kami stieven.kalengkian@gmail.com">New mysql packages are available for Slackware 11.0, 12.0, and -current to fix bugs and security issues.

Source

MySQL Community Server before 5.0.45 does not require privileges such as SELECT for the source table in a CREATE TABLE LIKE statement, which allows remote authenticated users to obtain sensitive information such as the table structure.

The convert_search_mode_to_innobase function in ha_innodb.cc in the InnoDB engine in MySQL 5.1.23-BK and earlier allows remote authenticated users to cause a denial of service (database crash) via a certain CONTAINS operation on an indexed column, which triggers an assertion error.

MySQL Community Server before 5.0.51, when a table relies on symlinks created through explicit DATA DIRECTORY and INDEX DIRECTORY options, allows remote authenticated users to overwrite system table information and gain privileges via a RENAME TABLE statement that changes the symlink to point to an existing file.

Untuk pengguna Optopro dengan OS Slackware 11.0, 12.0 dengan MySQL < 5.0.51 silahkan Patch.
Untuk informasi dan bantuan hubungi support kami stieven.kalengkian@gmail.com


Artikel Lain yang Terkait
Optopro 2 Beta.1
Awas, Celah di Internet Explorer 6
Slackware Security Issue httpd
   

Kategori Blog

Domain Name
Events
General
Pengumuman
Promo
Software Aplikasi
Tips dan Trik
Web Design
Web Hosting

Arsip Blog

November 2007 (1)
December 2007 (2)
February 2008 (16)
March 2008 (6)
April 2008 (6)
May 2008 (1)
June 2008 (1)
July 2008 (9)
August 2008 (2)

Artikel Terkait

Web Hosting
Web Design
Software Aplikasi
Aturan Layanan
Pembayaran
Blog
Komentar
Kontak
 
 
Home | Web Hosting | Web Design | Software Aplikasi | Kontak | Komentar | Aturan Layanan
© 2007 glowciptamedia.com - Web Hosting - Web Design - Software Aplikasi Gratis - Manado - Indonesia | CSS