Action not permitted
Modal body text goes here.
cve-2008-4456
Vulnerability from cvelistv5
Published
2008-10-06 23:00
Modified
2024-08-07 10:17
Severity ?
EPSS score ?
Summary
Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document. NOTE: as of 20081031, the issue has not been fixed in MySQL 5.0.67.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-07T10:17:09.714Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "20081029 Re: MySQL command-line client HTML injection vulnerability", "tags": [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred" ], "url": "http://www.securityfocus.com/archive/1/497885/100/0/threaded" }, { "name": "MDVSA-2009:094", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:094" }, { "name": "USN-1397-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "http://www.ubuntu.com/usn/USN-1397-1" }, { "name": "mysql-commandline-xss(45590)", "tags": [ "vdb-entry", "x_refsource_XF", "x_transferred" ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45590" }, { "name": "oval:org.mitre.oval:def:11456", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11456" }, { "name": "20081008 Re: MySQL command-line client HTML injection vulnerability", "tags": [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred" ], "url": "http://www.securityfocus.com/archive/1/497158/100/0/threaded" }, { "name": "38517", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/38517" }, { "name": "DSA-1783", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "http://www.debian.org/security/2009/dsa-1783" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://bugs.mysql.com/bug.php?id=27884" }, { "name": "USN-897-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "http://ubuntu.com/usn/usn-897-1" }, { "name": "RHSA-2009:1289", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2009-1289.html" }, { "name": "32072", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/32072" }, { "name": "APPLE-SA-2010-03-29-1", "tags": [ "vendor-advisory", "x_refsource_APPLE", "x_transferred" ], "url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html" }, { "name": "20080930 MySQL command-line client HTML injection vulnerability", "tags": [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred" ], "url": "http://www.securityfocus.com/archive/1/496842/100/0/threaded" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://support.apple.com/kb/HT4077" }, { "name": "RHSA-2010:0110", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2010-0110.html" }, { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "http://www.henlich.de/it-security/mysql-command-line-client-html-injection-vulnerability" }, { "name": "20081004 RE: RE: MySQL command-line client HTML injection vulnerability", "tags": [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred" ], "url": "http://seclists.org/bugtraq/2008/Oct/0026.html" }, { "name": "4357", "tags": [ "third-party-advisory", "x_refsource_SREASON", "x_transferred" ], "url": "http://securityreason.com/securityalert/4357" }, { "name": "34907", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/34907" }, { "name": "20080930 RE: MySQL command-line client HTML injection vulnerability", "tags": [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred" ], "url": "http://www.securityfocus.com/archive/1/496877/100/0/threaded" }, { "name": "36566", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/36566" }, { "name": "31486", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/31486" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2008-09-30T00:00:00", "descriptions": [ { "lang": "en", "value": "Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document. NOTE: as of 20081031, the issue has not been fixed in MySQL 5.0.67." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2018-10-11T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre" }, "references": [ { "name": "20081029 Re: MySQL command-line client HTML injection vulnerability", "tags": [ "mailing-list", "x_refsource_BUGTRAQ" ], "url": "http://www.securityfocus.com/archive/1/497885/100/0/threaded" }, { "name": "MDVSA-2009:094", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:094" }, { "name": "USN-1397-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "http://www.ubuntu.com/usn/USN-1397-1" }, { "name": "mysql-commandline-xss(45590)", "tags": [ "vdb-entry", "x_refsource_XF" ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45590" }, { "name": "oval:org.mitre.oval:def:11456", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11456" }, { "name": "20081008 Re: MySQL command-line client HTML injection vulnerability", "tags": [ "mailing-list", "x_refsource_BUGTRAQ" ], "url": "http://www.securityfocus.com/archive/1/497158/100/0/threaded" }, { "name": "38517", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/38517" }, { "name": "DSA-1783", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "http://www.debian.org/security/2009/dsa-1783" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://bugs.mysql.com/bug.php?id=27884" }, { "name": "USN-897-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "http://ubuntu.com/usn/usn-897-1" }, { "name": "RHSA-2009:1289", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2009-1289.html" }, { "name": "32072", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/32072" }, { "name": "APPLE-SA-2010-03-29-1", "tags": [ "vendor-advisory", "x_refsource_APPLE" ], "url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html" }, { "name": "20080930 MySQL command-line client HTML injection vulnerability", "tags": [ "mailing-list", "x_refsource_BUGTRAQ" ], "url": "http://www.securityfocus.com/archive/1/496842/100/0/threaded" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://support.apple.com/kb/HT4077" }, { "name": "RHSA-2010:0110", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2010-0110.html" }, { "tags": [ "x_refsource_MISC" ], "url": "http://www.henlich.de/it-security/mysql-command-line-client-html-injection-vulnerability" }, { "name": "20081004 RE: RE: MySQL command-line client HTML injection vulnerability", "tags": [ "mailing-list", "x_refsource_BUGTRAQ" ], "url": "http://seclists.org/bugtraq/2008/Oct/0026.html" }, { "name": "4357", "tags": [ "third-party-advisory", "x_refsource_SREASON" ], "url": "http://securityreason.com/securityalert/4357" }, { "name": "34907", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/34907" }, { "name": "20080930 RE: MySQL command-line client HTML injection vulnerability", "tags": [ "mailing-list", "x_refsource_BUGTRAQ" ], "url": "http://www.securityfocus.com/archive/1/496877/100/0/threaded" }, { "name": "36566", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/36566" }, { "name": "31486", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/31486" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-4456", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document. NOTE: as of 20081031, the issue has not been fixed in MySQL 5.0.67." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "20081029 Re: MySQL command-line client HTML injection vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/497885/100/0/threaded" }, { "name": "MDVSA-2009:094", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:094" }, { "name": "USN-1397-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-1397-1" }, { "name": "mysql-commandline-xss(45590)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45590" }, { "name": "oval:org.mitre.oval:def:11456", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11456" }, { "name": "20081008 Re: MySQL command-line client HTML injection vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/497158/100/0/threaded" }, { "name": "38517", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/38517" }, { "name": "DSA-1783", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2009/dsa-1783" }, { "name": "http://bugs.mysql.com/bug.php?id=27884", "refsource": "CONFIRM", "url": "http://bugs.mysql.com/bug.php?id=27884" }, { "name": "USN-897-1", "refsource": "UBUNTU", "url": "http://ubuntu.com/usn/usn-897-1" }, { "name": "RHSA-2009:1289", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2009-1289.html" }, { "name": "32072", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/32072" }, { "name": "APPLE-SA-2010-03-29-1", "refsource": "APPLE", "url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html" }, { "name": "20080930 MySQL command-line client HTML injection vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/496842/100/0/threaded" }, { "name": "http://support.apple.com/kb/HT4077", "refsource": "CONFIRM", "url": "http://support.apple.com/kb/HT4077" }, { "name": "RHSA-2010:0110", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2010-0110.html" }, { "name": "http://www.henlich.de/it-security/mysql-command-line-client-html-injection-vulnerability", "refsource": "MISC", "url": "http://www.henlich.de/it-security/mysql-command-line-client-html-injection-vulnerability" }, { "name": "20081004 RE: RE: MySQL command-line client HTML injection vulnerability", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2008/Oct/0026.html" }, { "name": "4357", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/4357" }, { "name": "34907", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/34907" }, { "name": "20080930 RE: MySQL command-line client HTML injection vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/496877/100/0/threaded" }, { "name": "36566", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/36566" }, { "name": "31486", "refsource": "BID", "url": "http://www.securityfocus.com/bid/31486" } ] } } } }, "cveMetadata": { "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-4456", "datePublished": "2008-10-06T23:00:00", "dateReserved": "2008-10-06T00:00:00", "dateUpdated": "2024-08-07T10:17:09.714Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2008-4456\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2008-10-06T23:25:50.707\",\"lastModified\":\"2019-12-17T19:56:39.450\",\"vulnStatus\":\"Modified\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document. NOTE: as of 20081031, the issue has not been fixed in MySQL 5.0.67.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en el cliente command-line en MySQL v5.0.26 a la v5.0.45, cuando la opci\u00f3n --html est\u00e1 activa, permite a los atacantes inyectar web script o HTML de su elecci\u00f3n coloc\u00e1ndolo en una celda de la base de datos, a la que puede acceder el cliente al comoponer un documento HTML.\"}],\"vendorComments\":[{\"organization\":\"Red Hat\",\"comment\":\"Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2008-4456\\n\\nThis issue was addressed for Red Hat Enterprise Linux 5 by https://rhn.redhat.com/errata/RHSA-2009-1289.html and Red Hat Enterprise Linux 4 by https://rhn.redhat.com/errata/RHSA-2010-0110.html .\\n\\nThe Red Hat Security Response Team has rated this issue as having low security impact, future MySQL package updates may address this flaw for Red Hat Enterprise Linux 3, and Red Hat Application Stack 2.\",\"lastModified\":\"2010-02-17T00:00:00\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:H/Au:N/C:N/I:P/A:N\",\"accessVector\":\"NETWORK\",\"accessComplexity\":\"HIGH\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\",\"baseScore\":2.6},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":4.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"754B78F2-A03C-40BE-812B-F5E57B93D20B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BEF9271A-A816-44F6-A811-ECC1FB0993C5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.36:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F482D3D3-205C-495E-AF3A-E9C3018111F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.0.44:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"53853D65-F2C6-410F-9CF8-DED19B66BD4E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"811780EA-8805-41A6-A920-A201CCC80790\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"11873AEA-5D6C-4AC0-915A-8A2869B2EFF5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.30:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7753CE5-61C4-4FBC-BB60-F7D4493E76E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7EDC2EB4-2C8D-4EF7-83A6-CBE6FF759DD0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5965032E-5BC0-4E69-B097-F9EE2B24C861\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.37:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"35F21A5A-F9C0-4860-80AD-1D3937483F28\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.38:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B54F660F-AE43-4F3B-8935-5712CAE860A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.41:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4413BB52-6FBD-4C12-8864-ADDC65E45B25\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.42:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8B49F9BA-560B-40AE-9457-436830CDD371\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.45:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F53A8437-C61A-4203-B341-B5596569E50B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.0.67:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C98C5EFF-B629-4FFF-B535-0C25DADD1C25\"}]}]}],\"references\":[{\"url\":\"http://bugs.mysql.com/bug.php?id=27884\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://seclists.org/bugtraq/2008/Oct/0026.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/32072\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/34907\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/36566\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/38517\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://securityreason.com/securityalert/4357\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://support.apple.com/kb/HT4077\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://ubuntu.com/usn/usn-897-1\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2009/dsa-1783\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.henlich.de/it-security/mysql-command-line-client-html-injection-vulnerability\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:094\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2009-1289.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2010-0110.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/496842/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/496877/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/497158/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/497885/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/31486\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.ubuntu.com/usn/USN-1397-1\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/45590\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11456\",\"source\":\"cve@mitre.org\"}]}}" } }
rhsa-2010_0110
Vulnerability from csaf_redhat
Published
2010-02-16 16:20
Modified
2024-11-05 17:13
Summary
Red Hat Security Advisory: mysql security update
Notes
Topic
Updated mysql packages that fix several security issues are now available
for Red Hat Enterprise Linux 4.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Details
MySQL is a multi-user, multi-threaded SQL database server. It consists of
the MySQL server daemon (mysqld) and many client programs and libraries.
Multiple flaws were discovered in the way MySQL handled symbolic links to
tables created using the DATA DIRECTORY and INDEX DIRECTORY directives in
CREATE TABLE statements. An attacker with CREATE and DROP table privileges
and shell access to the database server could use these flaws to escalate
their database privileges, or gain access to tables created by other
database users. (CVE-2008-4098, CVE-2009-4030)
Note: Due to the security risks and previous security issues related to the
use of the DATA DIRECTORY and INDEX DIRECTORY directives, users not
depending on this feature should consider disabling it by adding
"symbolic-links=0" to the "[mysqld]" section of the "my.cnf" configuration
file. In this update, an example of such a configuration was added to the
default "my.cnf" file.
An insufficient HTML entities quoting flaw was found in the mysql command
line client's HTML output mode. If an attacker was able to inject arbitrary
HTML tags into data stored in a MySQL database, which was later retrieved
using the mysql command line client and its HTML output mode, they could
perform a cross-site scripting (XSS) attack against victims viewing the
HTML output in a web browser. (CVE-2008-4456)
Multiple format string flaws were found in the way the MySQL server logged
user commands when creating and deleting databases. A remote, authenticated
attacker with permissions to CREATE and DROP databases could use these
flaws to formulate a specially-crafted SQL command that would cause a
temporary denial of service (open connections to mysqld are terminated).
(CVE-2009-2446)
Note: To exploit the CVE-2009-2446 flaws, the general query log (the mysqld
"--log" command line option or the "log" option in "my.cnf") must be
enabled. This logging is not enabled by default.
All MySQL users are advised to upgrade to these updated packages, which
contain backported patches to resolve these issues. After installing this
update, the MySQL server daemon (mysqld) will be restarted automatically.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated mysql packages that fix several security issues are now available\nfor Red Hat Enterprise Linux 4.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "MySQL is a multi-user, multi-threaded SQL database server. It consists of\nthe MySQL server daemon (mysqld) and many client programs and libraries.\n\nMultiple flaws were discovered in the way MySQL handled symbolic links to\ntables created using the DATA DIRECTORY and INDEX DIRECTORY directives in\nCREATE TABLE statements. An attacker with CREATE and DROP table privileges\nand shell access to the database server could use these flaws to escalate\ntheir database privileges, or gain access to tables created by other\ndatabase users. (CVE-2008-4098, CVE-2009-4030)\n\nNote: Due to the security risks and previous security issues related to the\nuse of the DATA DIRECTORY and INDEX DIRECTORY directives, users not\ndepending on this feature should consider disabling it by adding\n\"symbolic-links=0\" to the \"[mysqld]\" section of the \"my.cnf\" configuration\nfile. In this update, an example of such a configuration was added to the\ndefault \"my.cnf\" file.\n\nAn insufficient HTML entities quoting flaw was found in the mysql command\nline client\u0027s HTML output mode. If an attacker was able to inject arbitrary\nHTML tags into data stored in a MySQL database, which was later retrieved\nusing the mysql command line client and its HTML output mode, they could\nperform a cross-site scripting (XSS) attack against victims viewing the\nHTML output in a web browser. (CVE-2008-4456)\n\nMultiple format string flaws were found in the way the MySQL server logged\nuser commands when creating and deleting databases. A remote, authenticated\nattacker with permissions to CREATE and DROP databases could use these\nflaws to formulate a specially-crafted SQL command that would cause a\ntemporary denial of service (open connections to mysqld are terminated).\n(CVE-2009-2446)\n\nNote: To exploit the CVE-2009-2446 flaws, the general query log (the mysqld\n\"--log\" command line option or the \"log\" option in \"my.cnf\") must be\nenabled. This logging is not enabled by default.\n\nAll MySQL users are advised to upgrade to these updated packages, which\ncontain backported patches to resolve these issues. After installing this\nupdate, the MySQL server daemon (mysqld) will be restarted automatically.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2010:0110", "url": "https://access.redhat.com/errata/RHSA-2010:0110" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "http://dev.mysql.com/doc/refman/4.1/en/symbolic-links-to-tables.html", "url": "http://dev.mysql.com/doc/refman/4.1/en/symbolic-links-to-tables.html" }, { "category": "external", "summary": "454077", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=454077" }, { "category": "external", "summary": "466518", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=466518" }, { "category": "external", "summary": "511020", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=511020" }, { "category": "external", "summary": "543653", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=543653" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0110.json" } ], "title": "Red Hat Security Advisory: mysql security update", "tracking": { "current_release_date": "2024-11-05T17:13:47+00:00", "generator": { "date": "2024-11-05T17:13:47+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2010:0110", "initial_release_date": "2010-02-16T16:20:00+00:00", "revision_history": [ { "date": "2010-02-16T16:20:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2010-02-16T11:27:21+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T17:13:47+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AS version 4", "product": { "name": "Red Hat Enterprise Linux AS version 4", "product_id": "4AS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::as" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop version 4", "product": { "name": "Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::desktop" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 4", "product": { "name": "Red Hat Enterprise Linux ES version 4", "product_id": "4ES", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 4", "product": { "name": "Red Hat Enterprise Linux WS version 4", "product_id": "4WS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "mysql-bench-0:4.1.22-2.el4_8.3.ia64", "product": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ia64", "product_id": "mysql-bench-0:4.1.22-2.el4_8.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@4.1.22-2.el4_8.3?arch=ia64" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "product": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "product_id": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@4.1.22-2.el4_8.3?arch=ia64" } } }, { "category": "product_version", "name": "mysql-server-0:4.1.22-2.el4_8.3.ia64", "product": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ia64", "product_id": "mysql-server-0:4.1.22-2.el4_8.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@4.1.22-2.el4_8.3?arch=ia64" } } }, { "category": "product_version", "name": "mysql-0:4.1.22-2.el4_8.3.ia64", "product": { "name": "mysql-0:4.1.22-2.el4_8.3.ia64", "product_id": "mysql-0:4.1.22-2.el4_8.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@4.1.22-2.el4_8.3?arch=ia64" } } }, { "category": "product_version", "name": "mysql-devel-0:4.1.22-2.el4_8.3.ia64", "product": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ia64", "product_id": "mysql-devel-0:4.1.22-2.el4_8.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@4.1.22-2.el4_8.3?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "product": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "product_id": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@4.1.22-2.el4_8.3?arch=i386" } } }, { "category": "product_version", "name": "mysql-0:4.1.22-2.el4_8.3.i386", "product": { "name": "mysql-0:4.1.22-2.el4_8.3.i386", "product_id": "mysql-0:4.1.22-2.el4_8.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@4.1.22-2.el4_8.3?arch=i386" } } }, { "category": "product_version", "name": "mysql-bench-0:4.1.22-2.el4_8.3.i386", "product": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.i386", "product_id": "mysql-bench-0:4.1.22-2.el4_8.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@4.1.22-2.el4_8.3?arch=i386" } } }, { "category": "product_version", "name": "mysql-server-0:4.1.22-2.el4_8.3.i386", "product": { "name": "mysql-server-0:4.1.22-2.el4_8.3.i386", "product_id": "mysql-server-0:4.1.22-2.el4_8.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@4.1.22-2.el4_8.3?arch=i386" } } }, { "category": "product_version", "name": "mysql-devel-0:4.1.22-2.el4_8.3.i386", "product": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.i386", "product_id": "mysql-devel-0:4.1.22-2.el4_8.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@4.1.22-2.el4_8.3?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "product": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "product_id": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@4.1.22-2.el4_8.3?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "product": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "product_id": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@4.1.22-2.el4_8.3?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-server-0:4.1.22-2.el4_8.3.x86_64", "product": { "name": "mysql-server-0:4.1.22-2.el4_8.3.x86_64", "product_id": "mysql-server-0:4.1.22-2.el4_8.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@4.1.22-2.el4_8.3?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-0:4.1.22-2.el4_8.3.x86_64", "product": { "name": "mysql-0:4.1.22-2.el4_8.3.x86_64", "product_id": "mysql-0:4.1.22-2.el4_8.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@4.1.22-2.el4_8.3?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "product": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "product_id": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@4.1.22-2.el4_8.3?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "mysql-0:4.1.22-2.el4_8.3.src", "product": { "name": "mysql-0:4.1.22-2.el4_8.3.src", "product_id": "mysql-0:4.1.22-2.el4_8.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@4.1.22-2.el4_8.3?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "mysql-bench-0:4.1.22-2.el4_8.3.ppc", "product": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ppc", "product_id": "mysql-bench-0:4.1.22-2.el4_8.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@4.1.22-2.el4_8.3?arch=ppc" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "product": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "product_id": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@4.1.22-2.el4_8.3?arch=ppc" } } }, { "category": "product_version", "name": "mysql-server-0:4.1.22-2.el4_8.3.ppc", "product": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ppc", "product_id": "mysql-server-0:4.1.22-2.el4_8.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@4.1.22-2.el4_8.3?arch=ppc" } } }, { "category": "product_version", "name": "mysql-0:4.1.22-2.el4_8.3.ppc", "product": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc", "product_id": "mysql-0:4.1.22-2.el4_8.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@4.1.22-2.el4_8.3?arch=ppc" } } }, { "category": "product_version", "name": "mysql-devel-0:4.1.22-2.el4_8.3.ppc", "product": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ppc", "product_id": "mysql-devel-0:4.1.22-2.el4_8.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@4.1.22-2.el4_8.3?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "product": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "product_id": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@4.1.22-2.el4_8.3?arch=ppc64" } } }, { "category": "product_version", "name": "mysql-0:4.1.22-2.el4_8.3.ppc64", "product": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc64", "product_id": "mysql-0:4.1.22-2.el4_8.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@4.1.22-2.el4_8.3?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390x", "product": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390x", "product_id": "mysql-bench-0:4.1.22-2.el4_8.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@4.1.22-2.el4_8.3?arch=s390x" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "product": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "product_id": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@4.1.22-2.el4_8.3?arch=s390x" } } }, { "category": "product_version", "name": "mysql-server-0:4.1.22-2.el4_8.3.s390x", "product": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390x", "product_id": "mysql-server-0:4.1.22-2.el4_8.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@4.1.22-2.el4_8.3?arch=s390x" } } }, { "category": "product_version", "name": "mysql-0:4.1.22-2.el4_8.3.s390x", "product": { "name": "mysql-0:4.1.22-2.el4_8.3.s390x", "product_id": "mysql-0:4.1.22-2.el4_8.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@4.1.22-2.el4_8.3?arch=s390x" } } }, { "category": "product_version", "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390x", "product": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390x", "product_id": "mysql-devel-0:4.1.22-2.el4_8.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@4.1.22-2.el4_8.3?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "product": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "product_id": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@4.1.22-2.el4_8.3?arch=s390" } } }, { "category": "product_version", "name": "mysql-0:4.1.22-2.el4_8.3.s390", "product": { "name": "mysql-0:4.1.22-2.el4_8.3.s390", "product_id": "mysql-0:4.1.22-2.el4_8.3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@4.1.22-2.el4_8.3?arch=s390" } } }, { "category": "product_version", "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390", "product": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390", "product_id": "mysql-bench-0:4.1.22-2.el4_8.3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@4.1.22-2.el4_8.3?arch=s390" } } }, { "category": "product_version", "name": "mysql-server-0:4.1.22-2.el4_8.3.s390", "product": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390", "product_id": "mysql-server-0:4.1.22-2.el4_8.3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@4.1.22-2.el4_8.3?arch=s390" } } }, { "category": "product_version", "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390", "product": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390", "product_id": "mysql-devel-0:4.1.22-2.el4_8.3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@4.1.22-2.el4_8.3?arch=s390" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ppc64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.src as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-0:4.1.22-2.el4_8.3.src" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.src", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ppc64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.src as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-0:4.1.22-2.el4_8.3.src" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.src", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ppc64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.src as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-0:4.1.22-2.el4_8.3.src" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.src", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ppc64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.src as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-0:4.1.22-2.el4_8.3.src" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.src", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4WS" } ] }, "vulnerabilities": [ { "cve": "CVE-2008-4098", "discovery_date": "2008-07-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "454077" } ], "notes": [ { "category": "description", "text": "MySQL before 5.0.67 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL home data directory. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4097.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: incomplete upstream fix for CVE-2008-2079", "title": "Vulnerability summary" }, { "category": "other", "text": "In Red Hat Enterprise Linux 5, issue CVE-2008-2079 was fixed without introducing CVE-2008-4098 in RHSA-2009:1289.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2008-4098" }, { "category": "external", "summary": "RHBZ#454077", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=454077" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2008-4098", "url": "https://www.cve.org/CVERecord?id=CVE-2008-4098" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-4098", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-4098" } ], "release_date": "2008-07-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-02-16T16:20:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0110" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 3.2, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:S/C:P/I:P/A:N", "version": "2.0" }, "products": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "mysql: incomplete upstream fix for CVE-2008-2079" }, { "cve": "CVE-2008-4456", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2008-10-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "466518" } ], "notes": [ { "category": "description", "text": "Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document. NOTE: as of 20081031, the issue has not been fixed in MySQL 5.0.67.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: mysql command line client XSS flaw", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2008-4456" }, { "category": "external", "summary": "RHBZ#466518", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=466518" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2008-4456", "url": "https://www.cve.org/CVERecord?id=CVE-2008-4456" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-4456", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-4456" } ], "release_date": "2008-09-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-02-16T16:20:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0110" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 1.7, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:S/C:N/I:P/A:N", "version": "2.0" }, "products": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "mysql: mysql command line client XSS flaw" }, { "cve": "CVE-2009-2446", "discovery_date": "2009-07-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "511020" } ], "notes": [ { "category": "description", "text": "Multiple format string vulnerabilities in the dispatch_command function in libmysqld/sql_parse.cc in mysqld in MySQL 4.0.0 through 5.0.83 allow remote authenticated users to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in a database name in a (1) COM_CREATE_DB or (2) COM_DROP_DB request. NOTE: some of these details are obtained from third party information.", "title": "Vulnerability description" }, { "category": "summary", "text": "MySQL: Format string vulnerability by manipulation with database instances (crash)", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-2446\n\nThe Red Hat Product Security has rated this issue as having low security impact, future MySQL package updates may address this flaw for Red Hat Enterprise Linux 3 and Red Hat Application Stack 2.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-2446" }, { "category": "external", "summary": "RHBZ#511020", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=511020" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-2446", "url": "https://www.cve.org/CVERecord?id=CVE-2009-2446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-2446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2446" } ], "release_date": "2009-07-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-02-16T16:20:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0110" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 3.5, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:S/C:N/I:N/A:P", "version": "2.0" }, "products": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "MySQL: Format string vulnerability by manipulation with database instances (crash)" }, { "cve": "CVE-2009-4030", "discovery_date": "2009-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "543653" } ], "notes": [ { "category": "description", "text": "MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home directory, related to incorrect calculation of the mysql_unpacked_real_data_home value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4098 and CVE-2008-2079.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: Incomplete fix for CVE-2008-2079 / CVE-2008-4098", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-4030" }, { "category": "external", "summary": "RHBZ#543653", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=543653" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-4030", "url": "https://www.cve.org/CVERecord?id=CVE-2009-4030" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-4030", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4030" } ], "release_date": "2009-11-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-02-16T16:20:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0110" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 2.4, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:H/Au:S/C:N/I:P/A:P", "version": "2.0" }, "products": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "mysql: Incomplete fix for CVE-2008-2079 / CVE-2008-4098" } ] }
rhsa-2009_1289
Vulnerability from csaf_redhat
Published
2009-09-02 08:00
Modified
2024-11-05 17:08
Summary
Red Hat Security Advisory: mysql security and bug fix update
Notes
Topic
Updated mysql packages that fix various security issues and several bugs
are now available for Red Hat Enterprise Linux 5.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Details
MySQL is a multi-user, multi-threaded SQL database server. It consists of
the MySQL server daemon (mysqld) and many client programs and libraries.
MySQL did not correctly check directories used as arguments for the DATA
DIRECTORY and INDEX DIRECTORY directives. Using this flaw, an authenticated
attacker could elevate their access privileges to tables created by other
database users. Note: This attack does not work on existing tables. An
attacker can only elevate their access to another user's tables as the
tables are created. As well, the names of these created tables need to be
predicted correctly for this attack to succeed. (CVE-2008-2079)
A flaw was found in the way MySQL handles an empty bit-string literal. A
remote, authenticated attacker could crash the MySQL server daemon (mysqld)
if they used an empty bit-string literal in an SQL statement. This issue
only caused a temporary denial of service, as the MySQL daemon was
automatically restarted after the crash. (CVE-2008-3963)
An insufficient HTML entities quoting flaw was found in the mysql command
line client's HTML output mode. If an attacker was able to inject arbitrary
HTML tags into data stored in a MySQL database, which was later retrieved
using the mysql command line client and its HTML output mode, they could
perform a cross-site scripting (XSS) attack against victims viewing the
HTML output in a web browser. (CVE-2008-4456)
Multiple format string flaws were found in the way the MySQL server logs
user commands when creating and deleting databases. A remote, authenticated
attacker with permissions to CREATE and DROP databases could use these
flaws to formulate a specifically-crafted SQL command that would cause a
temporary denial of service (open connections to mysqld are terminated).
(CVE-2009-2446)
Note: To exploit the CVE-2009-2446 flaws, the general query log (the mysqld
"--log" command line option or the "log" option in "/etc/my.cnf") must be
enabled. This logging is not enabled by default.
This update also fixes multiple bugs. Details regarding these bugs can be
found in the Red Hat Enterprise Linux 5.4 Technical Notes. You can find a
link to the Technical Notes in the References section of this errata.
Note: These updated packages upgrade MySQL to version 5.0.77 to incorporate
numerous upstream bug fixes. Details of these changes are found in the
following MySQL Release Notes:
http://dev.mysql.com/doc/refman/5.0/en/news-5-0-77.html
All MySQL users are advised to upgrade to these updated packages, which
resolve these issues. After installing this update, the MySQL server
daemon (mysqld) will be restarted automatically.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated mysql packages that fix various security issues and several bugs\nare now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "MySQL is a multi-user, multi-threaded SQL database server. It consists of\nthe MySQL server daemon (mysqld) and many client programs and libraries.\n\nMySQL did not correctly check directories used as arguments for the DATA\nDIRECTORY and INDEX DIRECTORY directives. Using this flaw, an authenticated\nattacker could elevate their access privileges to tables created by other\ndatabase users. Note: This attack does not work on existing tables. An\nattacker can only elevate their access to another user\u0027s tables as the\ntables are created. As well, the names of these created tables need to be\npredicted correctly for this attack to succeed. (CVE-2008-2079)\n\nA flaw was found in the way MySQL handles an empty bit-string literal. A\nremote, authenticated attacker could crash the MySQL server daemon (mysqld)\nif they used an empty bit-string literal in an SQL statement. This issue\nonly caused a temporary denial of service, as the MySQL daemon was\nautomatically restarted after the crash. (CVE-2008-3963)\n\nAn insufficient HTML entities quoting flaw was found in the mysql command\nline client\u0027s HTML output mode. If an attacker was able to inject arbitrary\nHTML tags into data stored in a MySQL database, which was later retrieved\nusing the mysql command line client and its HTML output mode, they could\nperform a cross-site scripting (XSS) attack against victims viewing the\nHTML output in a web browser. (CVE-2008-4456)\n\nMultiple format string flaws were found in the way the MySQL server logs\nuser commands when creating and deleting databases. A remote, authenticated\nattacker with permissions to CREATE and DROP databases could use these\nflaws to formulate a specifically-crafted SQL command that would cause a\ntemporary denial of service (open connections to mysqld are terminated).\n(CVE-2009-2446)\n\nNote: To exploit the CVE-2009-2446 flaws, the general query log (the mysqld\n\"--log\" command line option or the \"log\" option in \"/etc/my.cnf\") must be\nenabled. This logging is not enabled by default.\n\nThis update also fixes multiple bugs. Details regarding these bugs can be\nfound in the Red Hat Enterprise Linux 5.4 Technical Notes. You can find a\nlink to the Technical Notes in the References section of this errata.\n\nNote: These updated packages upgrade MySQL to version 5.0.77 to incorporate\nnumerous upstream bug fixes. Details of these changes are found in the\nfollowing MySQL Release Notes:\nhttp://dev.mysql.com/doc/refman/5.0/en/news-5-0-77.html\n\nAll MySQL users are advised to upgrade to these updated packages, which\nresolve these issues. After installing this update, the MySQL server\ndaemon (mysqld) will be restarted automatically.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2009:1289", "url": "https://access.redhat.com/errata/RHSA-2009:1289" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/Technical_Notes/mysql.html", "url": "http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/Technical_Notes/mysql.html" }, { "category": "external", "summary": "435494", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=435494" }, { "category": "external", "summary": "445222", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=445222" }, { "category": "external", "summary": "448534", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=448534" }, { "category": "external", "summary": "450178", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=450178" }, { "category": "external", "summary": "452824", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=452824" }, { "category": "external", "summary": "453156", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=453156" }, { "category": "external", "summary": "455619", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=455619" }, { "category": "external", "summary": "457218", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=457218" }, { "category": "external", "summary": "462071", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=462071" }, { "category": "external", "summary": "462534", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=462534" }, { "category": "external", "summary": "466518", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=466518" }, { "category": "external", "summary": "470036", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=470036" }, { "category": "external", "summary": "476896", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=476896" }, { "category": "external", "summary": "511020", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=511020" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1289.json" } ], "title": "Red Hat Security Advisory: mysql security and bug fix update", "tracking": { "current_release_date": "2024-11-05T17:08:10+00:00", "generator": { "date": "2024-11-05T17:08:10+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2009:1289", "initial_release_date": "2009-09-02T08:00:00+00:00", "revision_history": [ { "date": "2009-09-02T08:00:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2009-09-01T09:32:14+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T17:08:10+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client_workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:5.0.77-3.el5.x86_64", "product": { "name": "mysql-debuginfo-0:5.0.77-3.el5.x86_64", "product_id": "mysql-debuginfo-0:5.0.77-3.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.77-3.el5?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.77-3.el5.x86_64", "product": { "name": "mysql-test-0:5.0.77-3.el5.x86_64", "product_id": "mysql-test-0:5.0.77-3.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.77-3.el5?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.77-3.el5.x86_64", "product": { "name": "mysql-bench-0:5.0.77-3.el5.x86_64", "product_id": "mysql-bench-0:5.0.77-3.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.77-3.el5?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.77-3.el5.x86_64", "product": { "name": "mysql-devel-0:5.0.77-3.el5.x86_64", "product_id": "mysql-devel-0:5.0.77-3.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.77-3.el5?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.77-3.el5.x86_64", "product": { "name": "mysql-server-0:5.0.77-3.el5.x86_64", "product_id": "mysql-server-0:5.0.77-3.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.77-3.el5?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-0:5.0.77-3.el5.x86_64", "product": { "name": "mysql-0:5.0.77-3.el5.x86_64", "product_id": "mysql-0:5.0.77-3.el5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.77-3.el5?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:5.0.77-3.el5.i386", "product": { "name": "mysql-debuginfo-0:5.0.77-3.el5.i386", "product_id": "mysql-debuginfo-0:5.0.77-3.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.77-3.el5?arch=i386" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.77-3.el5.i386", "product": { "name": "mysql-devel-0:5.0.77-3.el5.i386", "product_id": "mysql-devel-0:5.0.77-3.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.77-3.el5?arch=i386" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.77-3.el5.i386", "product": { "name": "mysql-test-0:5.0.77-3.el5.i386", "product_id": "mysql-test-0:5.0.77-3.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.77-3.el5?arch=i386" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.77-3.el5.i386", "product": { "name": "mysql-bench-0:5.0.77-3.el5.i386", "product_id": "mysql-bench-0:5.0.77-3.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.77-3.el5?arch=i386" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.77-3.el5.i386", "product": { "name": "mysql-server-0:5.0.77-3.el5.i386", "product_id": "mysql-server-0:5.0.77-3.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.77-3.el5?arch=i386" } } }, { "category": "product_version", "name": "mysql-0:5.0.77-3.el5.i386", "product": { "name": "mysql-0:5.0.77-3.el5.i386", "product_id": "mysql-0:5.0.77-3.el5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.77-3.el5?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "mysql-0:5.0.77-3.el5.src", "product": { "name": "mysql-0:5.0.77-3.el5.src", "product_id": "mysql-0:5.0.77-3.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.77-3.el5?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:5.0.77-3.el5.ia64", "product": { "name": "mysql-debuginfo-0:5.0.77-3.el5.ia64", "product_id": "mysql-debuginfo-0:5.0.77-3.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.77-3.el5?arch=ia64" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.77-3.el5.ia64", "product": { "name": "mysql-test-0:5.0.77-3.el5.ia64", "product_id": "mysql-test-0:5.0.77-3.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.77-3.el5?arch=ia64" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.77-3.el5.ia64", "product": { "name": "mysql-bench-0:5.0.77-3.el5.ia64", "product_id": "mysql-bench-0:5.0.77-3.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.77-3.el5?arch=ia64" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.77-3.el5.ia64", "product": { "name": "mysql-devel-0:5.0.77-3.el5.ia64", "product_id": "mysql-devel-0:5.0.77-3.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.77-3.el5?arch=ia64" } } }, { "category": "product_version", "name": "mysql-0:5.0.77-3.el5.ia64", "product": { "name": "mysql-0:5.0.77-3.el5.ia64", "product_id": "mysql-0:5.0.77-3.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.77-3.el5?arch=ia64" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.77-3.el5.ia64", "product": { "name": "mysql-server-0:5.0.77-3.el5.ia64", "product_id": "mysql-server-0:5.0.77-3.el5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.77-3.el5?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:5.0.77-3.el5.ppc64", "product": { "name": "mysql-debuginfo-0:5.0.77-3.el5.ppc64", "product_id": "mysql-debuginfo-0:5.0.77-3.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.77-3.el5?arch=ppc64" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.77-3.el5.ppc64", "product": { "name": "mysql-devel-0:5.0.77-3.el5.ppc64", "product_id": "mysql-devel-0:5.0.77-3.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.77-3.el5?arch=ppc64" } } }, { "category": "product_version", "name": "mysql-0:5.0.77-3.el5.ppc64", "product": { "name": "mysql-0:5.0.77-3.el5.ppc64", "product_id": "mysql-0:5.0.77-3.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.77-3.el5?arch=ppc64" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.77-3.el5.ppc64", "product": { "name": "mysql-server-0:5.0.77-3.el5.ppc64", "product_id": "mysql-server-0:5.0.77-3.el5.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.77-3.el5?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:5.0.77-3.el5.ppc", "product": { "name": "mysql-debuginfo-0:5.0.77-3.el5.ppc", "product_id": "mysql-debuginfo-0:5.0.77-3.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.77-3.el5?arch=ppc" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.77-3.el5.ppc", "product": { "name": "mysql-test-0:5.0.77-3.el5.ppc", "product_id": "mysql-test-0:5.0.77-3.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.77-3.el5?arch=ppc" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.77-3.el5.ppc", "product": { "name": "mysql-bench-0:5.0.77-3.el5.ppc", "product_id": "mysql-bench-0:5.0.77-3.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.77-3.el5?arch=ppc" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.77-3.el5.ppc", "product": { "name": "mysql-devel-0:5.0.77-3.el5.ppc", "product_id": "mysql-devel-0:5.0.77-3.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.77-3.el5?arch=ppc" } } }, { "category": "product_version", "name": "mysql-0:5.0.77-3.el5.ppc", "product": { "name": "mysql-0:5.0.77-3.el5.ppc", "product_id": "mysql-0:5.0.77-3.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.77-3.el5?arch=ppc" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.77-3.el5.ppc", "product": { "name": "mysql-server-0:5.0.77-3.el5.ppc", "product_id": "mysql-server-0:5.0.77-3.el5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.77-3.el5?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:5.0.77-3.el5.s390x", "product": { "name": "mysql-debuginfo-0:5.0.77-3.el5.s390x", "product_id": "mysql-debuginfo-0:5.0.77-3.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.77-3.el5?arch=s390x" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.77-3.el5.s390x", "product": { "name": "mysql-test-0:5.0.77-3.el5.s390x", "product_id": "mysql-test-0:5.0.77-3.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.77-3.el5?arch=s390x" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.77-3.el5.s390x", "product": { "name": "mysql-bench-0:5.0.77-3.el5.s390x", "product_id": "mysql-bench-0:5.0.77-3.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.77-3.el5?arch=s390x" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.77-3.el5.s390x", "product": { "name": "mysql-devel-0:5.0.77-3.el5.s390x", "product_id": "mysql-devel-0:5.0.77-3.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.77-3.el5?arch=s390x" } } }, { "category": "product_version", "name": "mysql-0:5.0.77-3.el5.s390x", "product": { "name": "mysql-0:5.0.77-3.el5.s390x", "product_id": "mysql-0:5.0.77-3.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.77-3.el5?arch=s390x" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.77-3.el5.s390x", "product": { "name": "mysql-server-0:5.0.77-3.el5.s390x", "product_id": "mysql-server-0:5.0.77-3.el5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.77-3.el5?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:5.0.77-3.el5.s390", "product": { "name": "mysql-debuginfo-0:5.0.77-3.el5.s390", "product_id": "mysql-debuginfo-0:5.0.77-3.el5.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.77-3.el5?arch=s390" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.77-3.el5.s390", "product": { "name": "mysql-devel-0:5.0.77-3.el5.s390", "product_id": "mysql-devel-0:5.0.77-3.el5.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.77-3.el5?arch=s390" } } }, { "category": "product_version", "name": "mysql-0:5.0.77-3.el5.s390", "product": { "name": "mysql-0:5.0.77-3.el5.s390", "product_id": "mysql-0:5.0.77-3.el5.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.77-3.el5?arch=s390" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc64" }, "product_reference": "mysql-0:5.0.77-3.el5.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.77-3.el5.s390" }, "product_reference": "mysql-0:5.0.77-3.el5.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.src as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.77-3.el5.src" }, "product_reference": "mysql-0:5.0.77-3.el5.src", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-bench-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-bench-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-bench-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-bench-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-bench-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc64" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc64" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-server-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-server-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-server-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc64" }, "product_reference": "mysql-server-0:5.0.77-3.el5.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-server-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-server-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-test-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-test-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-test-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-test-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-test-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-test-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-test-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-test-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.77-3.el5.ppc64" }, "product_reference": "mysql-0:5.0.77-3.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.77-3.el5.s390" }, "product_reference": "mysql-0:5.0.77-3.el5.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.77-3.el5.src" }, "product_reference": "mysql-0:5.0.77-3.el5.src", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-bench-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-bench-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-bench-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-bench-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-bench-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-bench-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-bench-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-bench-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-bench-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-bench-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc64" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.77-3.el5.ppc64" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.77-3.el5.s390" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-server-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-server-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-server-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.77-3.el5.ppc64" }, "product_reference": "mysql-server-0:5.0.77-3.el5.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-server-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-server-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-test-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-test-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-test-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-test-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-test-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-test-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-test-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-test-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-test-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-test-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.77-3.el5.ppc64" }, "product_reference": "mysql-0:5.0.77-3.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.77-3.el5.s390" }, "product_reference": "mysql-0:5.0.77-3.el5.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.77-3.el5.src" }, "product_reference": "mysql-0:5.0.77-3.el5.src", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-bench-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-bench-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-bench-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-bench-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-bench-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-bench-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-bench-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-bench-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-bench-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-bench-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc64" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-debuginfo-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.77-3.el5.ppc64" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.77-3.el5.s390" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-devel-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-server-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-server-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-server-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.77-3.el5.ppc64" }, "product_reference": "mysql-server-0:5.0.77-3.el5.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-server-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-server-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-3.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-test-0:5.0.77-3.el5.i386" }, "product_reference": "mysql-test-0:5.0.77-3.el5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-3.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-test-0:5.0.77-3.el5.ia64" }, "product_reference": "mysql-test-0:5.0.77-3.el5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-3.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-test-0:5.0.77-3.el5.ppc" }, "product_reference": "mysql-test-0:5.0.77-3.el5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-3.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-test-0:5.0.77-3.el5.s390x" }, "product_reference": "mysql-test-0:5.0.77-3.el5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-3.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-test-0:5.0.77-3.el5.x86_64" }, "product_reference": "mysql-test-0:5.0.77-3.el5.x86_64", "relates_to_product_reference": "5Server" } ] }, "vulnerabilities": [ { "cve": "CVE-2008-2079", "discovery_date": "2008-05-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "445222" } ], "notes": [ { "category": "description", "text": "MySQL 4.1.x before 4.1.24, 5.0.x before 5.0.60, 5.1.x before 5.1.24, and 6.0.x before 6.0.5 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are within the MySQL home data directory, which can point to tables that are created in the future.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: privilege escalation via DATA/INDEX DIRECTORY directives", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect MySQL as supplied with Red Hat Enterprise Linux 3.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-0:5.0.77-3.el5.src", "5Client-Workstation:mysql-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.x86_64", "5Client:mysql-0:5.0.77-3.el5.i386", "5Client:mysql-0:5.0.77-3.el5.ia64", "5Client:mysql-0:5.0.77-3.el5.ppc", "5Client:mysql-0:5.0.77-3.el5.ppc64", "5Client:mysql-0:5.0.77-3.el5.s390", "5Client:mysql-0:5.0.77-3.el5.s390x", "5Client:mysql-0:5.0.77-3.el5.src", "5Client:mysql-0:5.0.77-3.el5.x86_64", "5Client:mysql-bench-0:5.0.77-3.el5.i386", "5Client:mysql-bench-0:5.0.77-3.el5.ia64", "5Client:mysql-bench-0:5.0.77-3.el5.ppc", "5Client:mysql-bench-0:5.0.77-3.el5.s390x", "5Client:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client:mysql-devel-0:5.0.77-3.el5.i386", "5Client:mysql-devel-0:5.0.77-3.el5.ia64", "5Client:mysql-devel-0:5.0.77-3.el5.ppc", "5Client:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client:mysql-devel-0:5.0.77-3.el5.s390", "5Client:mysql-devel-0:5.0.77-3.el5.s390x", "5Client:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client:mysql-server-0:5.0.77-3.el5.i386", "5Client:mysql-server-0:5.0.77-3.el5.ia64", "5Client:mysql-server-0:5.0.77-3.el5.ppc", "5Client:mysql-server-0:5.0.77-3.el5.ppc64", "5Client:mysql-server-0:5.0.77-3.el5.s390x", "5Client:mysql-server-0:5.0.77-3.el5.x86_64", "5Client:mysql-test-0:5.0.77-3.el5.i386", "5Client:mysql-test-0:5.0.77-3.el5.ia64", "5Client:mysql-test-0:5.0.77-3.el5.ppc", "5Client:mysql-test-0:5.0.77-3.el5.s390x", "5Client:mysql-test-0:5.0.77-3.el5.x86_64", "5Server:mysql-0:5.0.77-3.el5.i386", "5Server:mysql-0:5.0.77-3.el5.ia64", "5Server:mysql-0:5.0.77-3.el5.ppc", "5Server:mysql-0:5.0.77-3.el5.ppc64", "5Server:mysql-0:5.0.77-3.el5.s390", "5Server:mysql-0:5.0.77-3.el5.s390x", "5Server:mysql-0:5.0.77-3.el5.src", "5Server:mysql-0:5.0.77-3.el5.x86_64", "5Server:mysql-bench-0:5.0.77-3.el5.i386", "5Server:mysql-bench-0:5.0.77-3.el5.ia64", "5Server:mysql-bench-0:5.0.77-3.el5.ppc", "5Server:mysql-bench-0:5.0.77-3.el5.s390x", "5Server:mysql-bench-0:5.0.77-3.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Server:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Server:mysql-devel-0:5.0.77-3.el5.i386", "5Server:mysql-devel-0:5.0.77-3.el5.ia64", "5Server:mysql-devel-0:5.0.77-3.el5.ppc", "5Server:mysql-devel-0:5.0.77-3.el5.ppc64", "5Server:mysql-devel-0:5.0.77-3.el5.s390", "5Server:mysql-devel-0:5.0.77-3.el5.s390x", "5Server:mysql-devel-0:5.0.77-3.el5.x86_64", "5Server:mysql-server-0:5.0.77-3.el5.i386", "5Server:mysql-server-0:5.0.77-3.el5.ia64", "5Server:mysql-server-0:5.0.77-3.el5.ppc", "5Server:mysql-server-0:5.0.77-3.el5.ppc64", "5Server:mysql-server-0:5.0.77-3.el5.s390x", "5Server:mysql-server-0:5.0.77-3.el5.x86_64", "5Server:mysql-test-0:5.0.77-3.el5.i386", "5Server:mysql-test-0:5.0.77-3.el5.ia64", "5Server:mysql-test-0:5.0.77-3.el5.ppc", "5Server:mysql-test-0:5.0.77-3.el5.s390x", "5Server:mysql-test-0:5.0.77-3.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2008-2079" }, { "category": "external", "summary": "RHBZ#445222", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=445222" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2008-2079", "url": "https://www.cve.org/CVERecord?id=CVE-2008-2079" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-2079", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-2079" } ], "release_date": "2008-03-13T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-09-02T08:00:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:mysql-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-0:5.0.77-3.el5.src", "5Client-Workstation:mysql-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.x86_64", "5Client:mysql-0:5.0.77-3.el5.i386", "5Client:mysql-0:5.0.77-3.el5.ia64", "5Client:mysql-0:5.0.77-3.el5.ppc", "5Client:mysql-0:5.0.77-3.el5.ppc64", "5Client:mysql-0:5.0.77-3.el5.s390", "5Client:mysql-0:5.0.77-3.el5.s390x", "5Client:mysql-0:5.0.77-3.el5.src", "5Client:mysql-0:5.0.77-3.el5.x86_64", "5Client:mysql-bench-0:5.0.77-3.el5.i386", "5Client:mysql-bench-0:5.0.77-3.el5.ia64", "5Client:mysql-bench-0:5.0.77-3.el5.ppc", "5Client:mysql-bench-0:5.0.77-3.el5.s390x", "5Client:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client:mysql-devel-0:5.0.77-3.el5.i386", "5Client:mysql-devel-0:5.0.77-3.el5.ia64", "5Client:mysql-devel-0:5.0.77-3.el5.ppc", "5Client:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client:mysql-devel-0:5.0.77-3.el5.s390", "5Client:mysql-devel-0:5.0.77-3.el5.s390x", "5Client:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client:mysql-server-0:5.0.77-3.el5.i386", "5Client:mysql-server-0:5.0.77-3.el5.ia64", "5Client:mysql-server-0:5.0.77-3.el5.ppc", "5Client:mysql-server-0:5.0.77-3.el5.ppc64", "5Client:mysql-server-0:5.0.77-3.el5.s390x", "5Client:mysql-server-0:5.0.77-3.el5.x86_64", "5Client:mysql-test-0:5.0.77-3.el5.i386", "5Client:mysql-test-0:5.0.77-3.el5.ia64", "5Client:mysql-test-0:5.0.77-3.el5.ppc", "5Client:mysql-test-0:5.0.77-3.el5.s390x", "5Client:mysql-test-0:5.0.77-3.el5.x86_64", "5Server:mysql-0:5.0.77-3.el5.i386", "5Server:mysql-0:5.0.77-3.el5.ia64", "5Server:mysql-0:5.0.77-3.el5.ppc", "5Server:mysql-0:5.0.77-3.el5.ppc64", "5Server:mysql-0:5.0.77-3.el5.s390", "5Server:mysql-0:5.0.77-3.el5.s390x", "5Server:mysql-0:5.0.77-3.el5.src", "5Server:mysql-0:5.0.77-3.el5.x86_64", "5Server:mysql-bench-0:5.0.77-3.el5.i386", "5Server:mysql-bench-0:5.0.77-3.el5.ia64", "5Server:mysql-bench-0:5.0.77-3.el5.ppc", "5Server:mysql-bench-0:5.0.77-3.el5.s390x", "5Server:mysql-bench-0:5.0.77-3.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Server:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Server:mysql-devel-0:5.0.77-3.el5.i386", "5Server:mysql-devel-0:5.0.77-3.el5.ia64", "5Server:mysql-devel-0:5.0.77-3.el5.ppc", "5Server:mysql-devel-0:5.0.77-3.el5.ppc64", "5Server:mysql-devel-0:5.0.77-3.el5.s390", "5Server:mysql-devel-0:5.0.77-3.el5.s390x", "5Server:mysql-devel-0:5.0.77-3.el5.x86_64", "5Server:mysql-server-0:5.0.77-3.el5.i386", "5Server:mysql-server-0:5.0.77-3.el5.ia64", "5Server:mysql-server-0:5.0.77-3.el5.ppc", "5Server:mysql-server-0:5.0.77-3.el5.ppc64", "5Server:mysql-server-0:5.0.77-3.el5.s390x", "5Server:mysql-server-0:5.0.77-3.el5.x86_64", "5Server:mysql-test-0:5.0.77-3.el5.i386", "5Server:mysql-test-0:5.0.77-3.el5.ia64", "5Server:mysql-test-0:5.0.77-3.el5.ppc", "5Server:mysql-test-0:5.0.77-3.el5.s390x", "5Server:mysql-test-0:5.0.77-3.el5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client-Workstation:mysql-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-0:5.0.77-3.el5.src", "5Client-Workstation:mysql-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.x86_64", "5Client:mysql-0:5.0.77-3.el5.i386", "5Client:mysql-0:5.0.77-3.el5.ia64", "5Client:mysql-0:5.0.77-3.el5.ppc", "5Client:mysql-0:5.0.77-3.el5.ppc64", "5Client:mysql-0:5.0.77-3.el5.s390", "5Client:mysql-0:5.0.77-3.el5.s390x", "5Client:mysql-0:5.0.77-3.el5.src", "5Client:mysql-0:5.0.77-3.el5.x86_64", "5Client:mysql-bench-0:5.0.77-3.el5.i386", "5Client:mysql-bench-0:5.0.77-3.el5.ia64", "5Client:mysql-bench-0:5.0.77-3.el5.ppc", "5Client:mysql-bench-0:5.0.77-3.el5.s390x", "5Client:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client:mysql-devel-0:5.0.77-3.el5.i386", "5Client:mysql-devel-0:5.0.77-3.el5.ia64", "5Client:mysql-devel-0:5.0.77-3.el5.ppc", "5Client:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client:mysql-devel-0:5.0.77-3.el5.s390", "5Client:mysql-devel-0:5.0.77-3.el5.s390x", "5Client:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client:mysql-server-0:5.0.77-3.el5.i386", "5Client:mysql-server-0:5.0.77-3.el5.ia64", "5Client:mysql-server-0:5.0.77-3.el5.ppc", "5Client:mysql-server-0:5.0.77-3.el5.ppc64", "5Client:mysql-server-0:5.0.77-3.el5.s390x", "5Client:mysql-server-0:5.0.77-3.el5.x86_64", "5Client:mysql-test-0:5.0.77-3.el5.i386", "5Client:mysql-test-0:5.0.77-3.el5.ia64", "5Client:mysql-test-0:5.0.77-3.el5.ppc", "5Client:mysql-test-0:5.0.77-3.el5.s390x", "5Client:mysql-test-0:5.0.77-3.el5.x86_64", "5Server:mysql-0:5.0.77-3.el5.i386", "5Server:mysql-0:5.0.77-3.el5.ia64", "5Server:mysql-0:5.0.77-3.el5.ppc", "5Server:mysql-0:5.0.77-3.el5.ppc64", "5Server:mysql-0:5.0.77-3.el5.s390", "5Server:mysql-0:5.0.77-3.el5.s390x", "5Server:mysql-0:5.0.77-3.el5.src", "5Server:mysql-0:5.0.77-3.el5.x86_64", "5Server:mysql-bench-0:5.0.77-3.el5.i386", "5Server:mysql-bench-0:5.0.77-3.el5.ia64", "5Server:mysql-bench-0:5.0.77-3.el5.ppc", "5Server:mysql-bench-0:5.0.77-3.el5.s390x", "5Server:mysql-bench-0:5.0.77-3.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Server:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Server:mysql-devel-0:5.0.77-3.el5.i386", "5Server:mysql-devel-0:5.0.77-3.el5.ia64", "5Server:mysql-devel-0:5.0.77-3.el5.ppc", "5Server:mysql-devel-0:5.0.77-3.el5.ppc64", "5Server:mysql-devel-0:5.0.77-3.el5.s390", "5Server:mysql-devel-0:5.0.77-3.el5.s390x", "5Server:mysql-devel-0:5.0.77-3.el5.x86_64", "5Server:mysql-server-0:5.0.77-3.el5.i386", "5Server:mysql-server-0:5.0.77-3.el5.ia64", "5Server:mysql-server-0:5.0.77-3.el5.ppc", "5Server:mysql-server-0:5.0.77-3.el5.ppc64", "5Server:mysql-server-0:5.0.77-3.el5.s390x", "5Server:mysql-server-0:5.0.77-3.el5.x86_64", "5Server:mysql-test-0:5.0.77-3.el5.i386", "5Server:mysql-test-0:5.0.77-3.el5.ia64", "5Server:mysql-test-0:5.0.77-3.el5.ppc", "5Server:mysql-test-0:5.0.77-3.el5.s390x", "5Server:mysql-test-0:5.0.77-3.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "mysql: privilege escalation via DATA/INDEX DIRECTORY directives" }, { "cve": "CVE-2008-3963", "discovery_date": "2008-09-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "462071" } ], "notes": [ { "category": "description", "text": "MySQL 5.0 before 5.0.66, 5.1 before 5.1.26, and 6.0 before 6.0.6 does not properly handle a b\u0027\u0027 (b single-quote single-quote) token, aka an empty bit-string literal, which allows remote attackers to cause a denial of service (daemon crash) by using this token in a SQL statement.", "title": "Vulnerability description" }, { "category": "summary", "text": "MySQL: Using an empty binary value leads to server crash", "title": "Vulnerability summary" }, { "category": "other", "text": "This issue did not affect MySQL as supplied with Red Hat Enterprise Linux 3 or 4.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-0:5.0.77-3.el5.src", "5Client-Workstation:mysql-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.x86_64", "5Client:mysql-0:5.0.77-3.el5.i386", "5Client:mysql-0:5.0.77-3.el5.ia64", "5Client:mysql-0:5.0.77-3.el5.ppc", "5Client:mysql-0:5.0.77-3.el5.ppc64", "5Client:mysql-0:5.0.77-3.el5.s390", "5Client:mysql-0:5.0.77-3.el5.s390x", "5Client:mysql-0:5.0.77-3.el5.src", "5Client:mysql-0:5.0.77-3.el5.x86_64", "5Client:mysql-bench-0:5.0.77-3.el5.i386", "5Client:mysql-bench-0:5.0.77-3.el5.ia64", "5Client:mysql-bench-0:5.0.77-3.el5.ppc", "5Client:mysql-bench-0:5.0.77-3.el5.s390x", "5Client:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client:mysql-devel-0:5.0.77-3.el5.i386", "5Client:mysql-devel-0:5.0.77-3.el5.ia64", "5Client:mysql-devel-0:5.0.77-3.el5.ppc", "5Client:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client:mysql-devel-0:5.0.77-3.el5.s390", "5Client:mysql-devel-0:5.0.77-3.el5.s390x", "5Client:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client:mysql-server-0:5.0.77-3.el5.i386", "5Client:mysql-server-0:5.0.77-3.el5.ia64", "5Client:mysql-server-0:5.0.77-3.el5.ppc", "5Client:mysql-server-0:5.0.77-3.el5.ppc64", "5Client:mysql-server-0:5.0.77-3.el5.s390x", "5Client:mysql-server-0:5.0.77-3.el5.x86_64", "5Client:mysql-test-0:5.0.77-3.el5.i386", "5Client:mysql-test-0:5.0.77-3.el5.ia64", "5Client:mysql-test-0:5.0.77-3.el5.ppc", "5Client:mysql-test-0:5.0.77-3.el5.s390x", "5Client:mysql-test-0:5.0.77-3.el5.x86_64", "5Server:mysql-0:5.0.77-3.el5.i386", "5Server:mysql-0:5.0.77-3.el5.ia64", "5Server:mysql-0:5.0.77-3.el5.ppc", "5Server:mysql-0:5.0.77-3.el5.ppc64", "5Server:mysql-0:5.0.77-3.el5.s390", "5Server:mysql-0:5.0.77-3.el5.s390x", "5Server:mysql-0:5.0.77-3.el5.src", "5Server:mysql-0:5.0.77-3.el5.x86_64", "5Server:mysql-bench-0:5.0.77-3.el5.i386", "5Server:mysql-bench-0:5.0.77-3.el5.ia64", "5Server:mysql-bench-0:5.0.77-3.el5.ppc", "5Server:mysql-bench-0:5.0.77-3.el5.s390x", "5Server:mysql-bench-0:5.0.77-3.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Server:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Server:mysql-devel-0:5.0.77-3.el5.i386", "5Server:mysql-devel-0:5.0.77-3.el5.ia64", "5Server:mysql-devel-0:5.0.77-3.el5.ppc", "5Server:mysql-devel-0:5.0.77-3.el5.ppc64", "5Server:mysql-devel-0:5.0.77-3.el5.s390", "5Server:mysql-devel-0:5.0.77-3.el5.s390x", "5Server:mysql-devel-0:5.0.77-3.el5.x86_64", "5Server:mysql-server-0:5.0.77-3.el5.i386", "5Server:mysql-server-0:5.0.77-3.el5.ia64", "5Server:mysql-server-0:5.0.77-3.el5.ppc", "5Server:mysql-server-0:5.0.77-3.el5.ppc64", "5Server:mysql-server-0:5.0.77-3.el5.s390x", "5Server:mysql-server-0:5.0.77-3.el5.x86_64", "5Server:mysql-test-0:5.0.77-3.el5.i386", "5Server:mysql-test-0:5.0.77-3.el5.ia64", "5Server:mysql-test-0:5.0.77-3.el5.ppc", "5Server:mysql-test-0:5.0.77-3.el5.s390x", "5Server:mysql-test-0:5.0.77-3.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2008-3963" }, { "category": "external", "summary": "RHBZ#462071", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=462071" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2008-3963", "url": "https://www.cve.org/CVERecord?id=CVE-2008-3963" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3963", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3963" } ], "release_date": "2008-08-10T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-09-02T08:00:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:mysql-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-0:5.0.77-3.el5.src", "5Client-Workstation:mysql-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.x86_64", "5Client:mysql-0:5.0.77-3.el5.i386", "5Client:mysql-0:5.0.77-3.el5.ia64", "5Client:mysql-0:5.0.77-3.el5.ppc", "5Client:mysql-0:5.0.77-3.el5.ppc64", "5Client:mysql-0:5.0.77-3.el5.s390", "5Client:mysql-0:5.0.77-3.el5.s390x", "5Client:mysql-0:5.0.77-3.el5.src", "5Client:mysql-0:5.0.77-3.el5.x86_64", "5Client:mysql-bench-0:5.0.77-3.el5.i386", "5Client:mysql-bench-0:5.0.77-3.el5.ia64", "5Client:mysql-bench-0:5.0.77-3.el5.ppc", "5Client:mysql-bench-0:5.0.77-3.el5.s390x", "5Client:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client:mysql-devel-0:5.0.77-3.el5.i386", "5Client:mysql-devel-0:5.0.77-3.el5.ia64", "5Client:mysql-devel-0:5.0.77-3.el5.ppc", "5Client:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client:mysql-devel-0:5.0.77-3.el5.s390", "5Client:mysql-devel-0:5.0.77-3.el5.s390x", "5Client:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client:mysql-server-0:5.0.77-3.el5.i386", "5Client:mysql-server-0:5.0.77-3.el5.ia64", "5Client:mysql-server-0:5.0.77-3.el5.ppc", "5Client:mysql-server-0:5.0.77-3.el5.ppc64", "5Client:mysql-server-0:5.0.77-3.el5.s390x", "5Client:mysql-server-0:5.0.77-3.el5.x86_64", "5Client:mysql-test-0:5.0.77-3.el5.i386", "5Client:mysql-test-0:5.0.77-3.el5.ia64", "5Client:mysql-test-0:5.0.77-3.el5.ppc", "5Client:mysql-test-0:5.0.77-3.el5.s390x", "5Client:mysql-test-0:5.0.77-3.el5.x86_64", "5Server:mysql-0:5.0.77-3.el5.i386", "5Server:mysql-0:5.0.77-3.el5.ia64", "5Server:mysql-0:5.0.77-3.el5.ppc", "5Server:mysql-0:5.0.77-3.el5.ppc64", "5Server:mysql-0:5.0.77-3.el5.s390", "5Server:mysql-0:5.0.77-3.el5.s390x", "5Server:mysql-0:5.0.77-3.el5.src", "5Server:mysql-0:5.0.77-3.el5.x86_64", "5Server:mysql-bench-0:5.0.77-3.el5.i386", "5Server:mysql-bench-0:5.0.77-3.el5.ia64", "5Server:mysql-bench-0:5.0.77-3.el5.ppc", "5Server:mysql-bench-0:5.0.77-3.el5.s390x", "5Server:mysql-bench-0:5.0.77-3.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Server:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Server:mysql-devel-0:5.0.77-3.el5.i386", "5Server:mysql-devel-0:5.0.77-3.el5.ia64", "5Server:mysql-devel-0:5.0.77-3.el5.ppc", "5Server:mysql-devel-0:5.0.77-3.el5.ppc64", "5Server:mysql-devel-0:5.0.77-3.el5.s390", "5Server:mysql-devel-0:5.0.77-3.el5.s390x", "5Server:mysql-devel-0:5.0.77-3.el5.x86_64", "5Server:mysql-server-0:5.0.77-3.el5.i386", "5Server:mysql-server-0:5.0.77-3.el5.ia64", "5Server:mysql-server-0:5.0.77-3.el5.ppc", "5Server:mysql-server-0:5.0.77-3.el5.ppc64", "5Server:mysql-server-0:5.0.77-3.el5.s390x", "5Server:mysql-server-0:5.0.77-3.el5.x86_64", "5Server:mysql-test-0:5.0.77-3.el5.i386", "5Server:mysql-test-0:5.0.77-3.el5.ia64", "5Server:mysql-test-0:5.0.77-3.el5.ppc", "5Server:mysql-test-0:5.0.77-3.el5.s390x", "5Server:mysql-test-0:5.0.77-3.el5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 2.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:S/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-Workstation:mysql-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-0:5.0.77-3.el5.src", "5Client-Workstation:mysql-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.x86_64", "5Client:mysql-0:5.0.77-3.el5.i386", "5Client:mysql-0:5.0.77-3.el5.ia64", "5Client:mysql-0:5.0.77-3.el5.ppc", "5Client:mysql-0:5.0.77-3.el5.ppc64", "5Client:mysql-0:5.0.77-3.el5.s390", "5Client:mysql-0:5.0.77-3.el5.s390x", "5Client:mysql-0:5.0.77-3.el5.src", "5Client:mysql-0:5.0.77-3.el5.x86_64", "5Client:mysql-bench-0:5.0.77-3.el5.i386", "5Client:mysql-bench-0:5.0.77-3.el5.ia64", "5Client:mysql-bench-0:5.0.77-3.el5.ppc", "5Client:mysql-bench-0:5.0.77-3.el5.s390x", "5Client:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client:mysql-devel-0:5.0.77-3.el5.i386", "5Client:mysql-devel-0:5.0.77-3.el5.ia64", "5Client:mysql-devel-0:5.0.77-3.el5.ppc", "5Client:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client:mysql-devel-0:5.0.77-3.el5.s390", "5Client:mysql-devel-0:5.0.77-3.el5.s390x", "5Client:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client:mysql-server-0:5.0.77-3.el5.i386", "5Client:mysql-server-0:5.0.77-3.el5.ia64", "5Client:mysql-server-0:5.0.77-3.el5.ppc", "5Client:mysql-server-0:5.0.77-3.el5.ppc64", "5Client:mysql-server-0:5.0.77-3.el5.s390x", "5Client:mysql-server-0:5.0.77-3.el5.x86_64", "5Client:mysql-test-0:5.0.77-3.el5.i386", "5Client:mysql-test-0:5.0.77-3.el5.ia64", "5Client:mysql-test-0:5.0.77-3.el5.ppc", "5Client:mysql-test-0:5.0.77-3.el5.s390x", "5Client:mysql-test-0:5.0.77-3.el5.x86_64", "5Server:mysql-0:5.0.77-3.el5.i386", "5Server:mysql-0:5.0.77-3.el5.ia64", "5Server:mysql-0:5.0.77-3.el5.ppc", "5Server:mysql-0:5.0.77-3.el5.ppc64", "5Server:mysql-0:5.0.77-3.el5.s390", "5Server:mysql-0:5.0.77-3.el5.s390x", "5Server:mysql-0:5.0.77-3.el5.src", "5Server:mysql-0:5.0.77-3.el5.x86_64", "5Server:mysql-bench-0:5.0.77-3.el5.i386", "5Server:mysql-bench-0:5.0.77-3.el5.ia64", "5Server:mysql-bench-0:5.0.77-3.el5.ppc", "5Server:mysql-bench-0:5.0.77-3.el5.s390x", "5Server:mysql-bench-0:5.0.77-3.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Server:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Server:mysql-devel-0:5.0.77-3.el5.i386", "5Server:mysql-devel-0:5.0.77-3.el5.ia64", "5Server:mysql-devel-0:5.0.77-3.el5.ppc", "5Server:mysql-devel-0:5.0.77-3.el5.ppc64", "5Server:mysql-devel-0:5.0.77-3.el5.s390", "5Server:mysql-devel-0:5.0.77-3.el5.s390x", "5Server:mysql-devel-0:5.0.77-3.el5.x86_64", "5Server:mysql-server-0:5.0.77-3.el5.i386", "5Server:mysql-server-0:5.0.77-3.el5.ia64", "5Server:mysql-server-0:5.0.77-3.el5.ppc", "5Server:mysql-server-0:5.0.77-3.el5.ppc64", "5Server:mysql-server-0:5.0.77-3.el5.s390x", "5Server:mysql-server-0:5.0.77-3.el5.x86_64", "5Server:mysql-test-0:5.0.77-3.el5.i386", "5Server:mysql-test-0:5.0.77-3.el5.ia64", "5Server:mysql-test-0:5.0.77-3.el5.ppc", "5Server:mysql-test-0:5.0.77-3.el5.s390x", "5Server:mysql-test-0:5.0.77-3.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "MySQL: Using an empty binary value leads to server crash" }, { "cve": "CVE-2008-4456", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2008-10-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "466518" } ], "notes": [ { "category": "description", "text": "Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document. NOTE: as of 20081031, the issue has not been fixed in MySQL 5.0.67.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: mysql command line client XSS flaw", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-0:5.0.77-3.el5.src", "5Client-Workstation:mysql-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.x86_64", "5Client:mysql-0:5.0.77-3.el5.i386", "5Client:mysql-0:5.0.77-3.el5.ia64", "5Client:mysql-0:5.0.77-3.el5.ppc", "5Client:mysql-0:5.0.77-3.el5.ppc64", "5Client:mysql-0:5.0.77-3.el5.s390", "5Client:mysql-0:5.0.77-3.el5.s390x", "5Client:mysql-0:5.0.77-3.el5.src", "5Client:mysql-0:5.0.77-3.el5.x86_64", "5Client:mysql-bench-0:5.0.77-3.el5.i386", "5Client:mysql-bench-0:5.0.77-3.el5.ia64", "5Client:mysql-bench-0:5.0.77-3.el5.ppc", "5Client:mysql-bench-0:5.0.77-3.el5.s390x", "5Client:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client:mysql-devel-0:5.0.77-3.el5.i386", "5Client:mysql-devel-0:5.0.77-3.el5.ia64", "5Client:mysql-devel-0:5.0.77-3.el5.ppc", "5Client:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client:mysql-devel-0:5.0.77-3.el5.s390", "5Client:mysql-devel-0:5.0.77-3.el5.s390x", "5Client:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client:mysql-server-0:5.0.77-3.el5.i386", "5Client:mysql-server-0:5.0.77-3.el5.ia64", "5Client:mysql-server-0:5.0.77-3.el5.ppc", "5Client:mysql-server-0:5.0.77-3.el5.ppc64", "5Client:mysql-server-0:5.0.77-3.el5.s390x", "5Client:mysql-server-0:5.0.77-3.el5.x86_64", "5Client:mysql-test-0:5.0.77-3.el5.i386", "5Client:mysql-test-0:5.0.77-3.el5.ia64", "5Client:mysql-test-0:5.0.77-3.el5.ppc", "5Client:mysql-test-0:5.0.77-3.el5.s390x", "5Client:mysql-test-0:5.0.77-3.el5.x86_64", "5Server:mysql-0:5.0.77-3.el5.i386", "5Server:mysql-0:5.0.77-3.el5.ia64", "5Server:mysql-0:5.0.77-3.el5.ppc", "5Server:mysql-0:5.0.77-3.el5.ppc64", "5Server:mysql-0:5.0.77-3.el5.s390", "5Server:mysql-0:5.0.77-3.el5.s390x", "5Server:mysql-0:5.0.77-3.el5.src", "5Server:mysql-0:5.0.77-3.el5.x86_64", "5Server:mysql-bench-0:5.0.77-3.el5.i386", "5Server:mysql-bench-0:5.0.77-3.el5.ia64", "5Server:mysql-bench-0:5.0.77-3.el5.ppc", "5Server:mysql-bench-0:5.0.77-3.el5.s390x", "5Server:mysql-bench-0:5.0.77-3.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Server:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Server:mysql-devel-0:5.0.77-3.el5.i386", "5Server:mysql-devel-0:5.0.77-3.el5.ia64", "5Server:mysql-devel-0:5.0.77-3.el5.ppc", "5Server:mysql-devel-0:5.0.77-3.el5.ppc64", "5Server:mysql-devel-0:5.0.77-3.el5.s390", "5Server:mysql-devel-0:5.0.77-3.el5.s390x", "5Server:mysql-devel-0:5.0.77-3.el5.x86_64", "5Server:mysql-server-0:5.0.77-3.el5.i386", "5Server:mysql-server-0:5.0.77-3.el5.ia64", "5Server:mysql-server-0:5.0.77-3.el5.ppc", "5Server:mysql-server-0:5.0.77-3.el5.ppc64", "5Server:mysql-server-0:5.0.77-3.el5.s390x", "5Server:mysql-server-0:5.0.77-3.el5.x86_64", "5Server:mysql-test-0:5.0.77-3.el5.i386", "5Server:mysql-test-0:5.0.77-3.el5.ia64", "5Server:mysql-test-0:5.0.77-3.el5.ppc", "5Server:mysql-test-0:5.0.77-3.el5.s390x", "5Server:mysql-test-0:5.0.77-3.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2008-4456" }, { "category": "external", "summary": "RHBZ#466518", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=466518" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2008-4456", "url": "https://www.cve.org/CVERecord?id=CVE-2008-4456" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-4456", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-4456" } ], "release_date": "2008-09-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-09-02T08:00:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:mysql-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-0:5.0.77-3.el5.src", "5Client-Workstation:mysql-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.x86_64", "5Client:mysql-0:5.0.77-3.el5.i386", "5Client:mysql-0:5.0.77-3.el5.ia64", "5Client:mysql-0:5.0.77-3.el5.ppc", "5Client:mysql-0:5.0.77-3.el5.ppc64", "5Client:mysql-0:5.0.77-3.el5.s390", "5Client:mysql-0:5.0.77-3.el5.s390x", "5Client:mysql-0:5.0.77-3.el5.src", "5Client:mysql-0:5.0.77-3.el5.x86_64", "5Client:mysql-bench-0:5.0.77-3.el5.i386", "5Client:mysql-bench-0:5.0.77-3.el5.ia64", "5Client:mysql-bench-0:5.0.77-3.el5.ppc", "5Client:mysql-bench-0:5.0.77-3.el5.s390x", "5Client:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client:mysql-devel-0:5.0.77-3.el5.i386", "5Client:mysql-devel-0:5.0.77-3.el5.ia64", "5Client:mysql-devel-0:5.0.77-3.el5.ppc", "5Client:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client:mysql-devel-0:5.0.77-3.el5.s390", "5Client:mysql-devel-0:5.0.77-3.el5.s390x", "5Client:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client:mysql-server-0:5.0.77-3.el5.i386", "5Client:mysql-server-0:5.0.77-3.el5.ia64", "5Client:mysql-server-0:5.0.77-3.el5.ppc", "5Client:mysql-server-0:5.0.77-3.el5.ppc64", "5Client:mysql-server-0:5.0.77-3.el5.s390x", "5Client:mysql-server-0:5.0.77-3.el5.x86_64", "5Client:mysql-test-0:5.0.77-3.el5.i386", "5Client:mysql-test-0:5.0.77-3.el5.ia64", "5Client:mysql-test-0:5.0.77-3.el5.ppc", "5Client:mysql-test-0:5.0.77-3.el5.s390x", "5Client:mysql-test-0:5.0.77-3.el5.x86_64", "5Server:mysql-0:5.0.77-3.el5.i386", "5Server:mysql-0:5.0.77-3.el5.ia64", "5Server:mysql-0:5.0.77-3.el5.ppc", "5Server:mysql-0:5.0.77-3.el5.ppc64", "5Server:mysql-0:5.0.77-3.el5.s390", "5Server:mysql-0:5.0.77-3.el5.s390x", "5Server:mysql-0:5.0.77-3.el5.src", "5Server:mysql-0:5.0.77-3.el5.x86_64", "5Server:mysql-bench-0:5.0.77-3.el5.i386", "5Server:mysql-bench-0:5.0.77-3.el5.ia64", "5Server:mysql-bench-0:5.0.77-3.el5.ppc", "5Server:mysql-bench-0:5.0.77-3.el5.s390x", "5Server:mysql-bench-0:5.0.77-3.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Server:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Server:mysql-devel-0:5.0.77-3.el5.i386", "5Server:mysql-devel-0:5.0.77-3.el5.ia64", "5Server:mysql-devel-0:5.0.77-3.el5.ppc", "5Server:mysql-devel-0:5.0.77-3.el5.ppc64", "5Server:mysql-devel-0:5.0.77-3.el5.s390", "5Server:mysql-devel-0:5.0.77-3.el5.s390x", "5Server:mysql-devel-0:5.0.77-3.el5.x86_64", "5Server:mysql-server-0:5.0.77-3.el5.i386", "5Server:mysql-server-0:5.0.77-3.el5.ia64", "5Server:mysql-server-0:5.0.77-3.el5.ppc", "5Server:mysql-server-0:5.0.77-3.el5.ppc64", "5Server:mysql-server-0:5.0.77-3.el5.s390x", "5Server:mysql-server-0:5.0.77-3.el5.x86_64", "5Server:mysql-test-0:5.0.77-3.el5.i386", "5Server:mysql-test-0:5.0.77-3.el5.ia64", "5Server:mysql-test-0:5.0.77-3.el5.ppc", "5Server:mysql-test-0:5.0.77-3.el5.s390x", "5Server:mysql-test-0:5.0.77-3.el5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 1.7, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:S/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-Workstation:mysql-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-0:5.0.77-3.el5.src", "5Client-Workstation:mysql-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.x86_64", "5Client:mysql-0:5.0.77-3.el5.i386", "5Client:mysql-0:5.0.77-3.el5.ia64", "5Client:mysql-0:5.0.77-3.el5.ppc", "5Client:mysql-0:5.0.77-3.el5.ppc64", "5Client:mysql-0:5.0.77-3.el5.s390", "5Client:mysql-0:5.0.77-3.el5.s390x", "5Client:mysql-0:5.0.77-3.el5.src", "5Client:mysql-0:5.0.77-3.el5.x86_64", "5Client:mysql-bench-0:5.0.77-3.el5.i386", "5Client:mysql-bench-0:5.0.77-3.el5.ia64", "5Client:mysql-bench-0:5.0.77-3.el5.ppc", "5Client:mysql-bench-0:5.0.77-3.el5.s390x", "5Client:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client:mysql-devel-0:5.0.77-3.el5.i386", "5Client:mysql-devel-0:5.0.77-3.el5.ia64", "5Client:mysql-devel-0:5.0.77-3.el5.ppc", "5Client:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client:mysql-devel-0:5.0.77-3.el5.s390", "5Client:mysql-devel-0:5.0.77-3.el5.s390x", "5Client:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client:mysql-server-0:5.0.77-3.el5.i386", "5Client:mysql-server-0:5.0.77-3.el5.ia64", "5Client:mysql-server-0:5.0.77-3.el5.ppc", "5Client:mysql-server-0:5.0.77-3.el5.ppc64", "5Client:mysql-server-0:5.0.77-3.el5.s390x", "5Client:mysql-server-0:5.0.77-3.el5.x86_64", "5Client:mysql-test-0:5.0.77-3.el5.i386", "5Client:mysql-test-0:5.0.77-3.el5.ia64", "5Client:mysql-test-0:5.0.77-3.el5.ppc", "5Client:mysql-test-0:5.0.77-3.el5.s390x", "5Client:mysql-test-0:5.0.77-3.el5.x86_64", "5Server:mysql-0:5.0.77-3.el5.i386", "5Server:mysql-0:5.0.77-3.el5.ia64", "5Server:mysql-0:5.0.77-3.el5.ppc", "5Server:mysql-0:5.0.77-3.el5.ppc64", "5Server:mysql-0:5.0.77-3.el5.s390", "5Server:mysql-0:5.0.77-3.el5.s390x", "5Server:mysql-0:5.0.77-3.el5.src", "5Server:mysql-0:5.0.77-3.el5.x86_64", "5Server:mysql-bench-0:5.0.77-3.el5.i386", "5Server:mysql-bench-0:5.0.77-3.el5.ia64", "5Server:mysql-bench-0:5.0.77-3.el5.ppc", "5Server:mysql-bench-0:5.0.77-3.el5.s390x", "5Server:mysql-bench-0:5.0.77-3.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Server:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Server:mysql-devel-0:5.0.77-3.el5.i386", "5Server:mysql-devel-0:5.0.77-3.el5.ia64", "5Server:mysql-devel-0:5.0.77-3.el5.ppc", "5Server:mysql-devel-0:5.0.77-3.el5.ppc64", "5Server:mysql-devel-0:5.0.77-3.el5.s390", "5Server:mysql-devel-0:5.0.77-3.el5.s390x", "5Server:mysql-devel-0:5.0.77-3.el5.x86_64", "5Server:mysql-server-0:5.0.77-3.el5.i386", "5Server:mysql-server-0:5.0.77-3.el5.ia64", "5Server:mysql-server-0:5.0.77-3.el5.ppc", "5Server:mysql-server-0:5.0.77-3.el5.ppc64", "5Server:mysql-server-0:5.0.77-3.el5.s390x", "5Server:mysql-server-0:5.0.77-3.el5.x86_64", "5Server:mysql-test-0:5.0.77-3.el5.i386", "5Server:mysql-test-0:5.0.77-3.el5.ia64", "5Server:mysql-test-0:5.0.77-3.el5.ppc", "5Server:mysql-test-0:5.0.77-3.el5.s390x", "5Server:mysql-test-0:5.0.77-3.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "mysql: mysql command line client XSS flaw" }, { "cve": "CVE-2009-2446", "discovery_date": "2009-07-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "511020" } ], "notes": [ { "category": "description", "text": "Multiple format string vulnerabilities in the dispatch_command function in libmysqld/sql_parse.cc in mysqld in MySQL 4.0.0 through 5.0.83 allow remote authenticated users to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in a database name in a (1) COM_CREATE_DB or (2) COM_DROP_DB request. NOTE: some of these details are obtained from third party information.", "title": "Vulnerability description" }, { "category": "summary", "text": "MySQL: Format string vulnerability by manipulation with database instances (crash)", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-2446\n\nThe Red Hat Product Security has rated this issue as having low security impact, future MySQL package updates may address this flaw for Red Hat Enterprise Linux 3 and Red Hat Application Stack 2.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-0:5.0.77-3.el5.src", "5Client-Workstation:mysql-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.x86_64", "5Client:mysql-0:5.0.77-3.el5.i386", "5Client:mysql-0:5.0.77-3.el5.ia64", "5Client:mysql-0:5.0.77-3.el5.ppc", "5Client:mysql-0:5.0.77-3.el5.ppc64", "5Client:mysql-0:5.0.77-3.el5.s390", "5Client:mysql-0:5.0.77-3.el5.s390x", "5Client:mysql-0:5.0.77-3.el5.src", "5Client:mysql-0:5.0.77-3.el5.x86_64", "5Client:mysql-bench-0:5.0.77-3.el5.i386", "5Client:mysql-bench-0:5.0.77-3.el5.ia64", "5Client:mysql-bench-0:5.0.77-3.el5.ppc", "5Client:mysql-bench-0:5.0.77-3.el5.s390x", "5Client:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client:mysql-devel-0:5.0.77-3.el5.i386", "5Client:mysql-devel-0:5.0.77-3.el5.ia64", "5Client:mysql-devel-0:5.0.77-3.el5.ppc", "5Client:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client:mysql-devel-0:5.0.77-3.el5.s390", "5Client:mysql-devel-0:5.0.77-3.el5.s390x", "5Client:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client:mysql-server-0:5.0.77-3.el5.i386", "5Client:mysql-server-0:5.0.77-3.el5.ia64", "5Client:mysql-server-0:5.0.77-3.el5.ppc", "5Client:mysql-server-0:5.0.77-3.el5.ppc64", "5Client:mysql-server-0:5.0.77-3.el5.s390x", "5Client:mysql-server-0:5.0.77-3.el5.x86_64", "5Client:mysql-test-0:5.0.77-3.el5.i386", "5Client:mysql-test-0:5.0.77-3.el5.ia64", "5Client:mysql-test-0:5.0.77-3.el5.ppc", "5Client:mysql-test-0:5.0.77-3.el5.s390x", "5Client:mysql-test-0:5.0.77-3.el5.x86_64", "5Server:mysql-0:5.0.77-3.el5.i386", "5Server:mysql-0:5.0.77-3.el5.ia64", "5Server:mysql-0:5.0.77-3.el5.ppc", "5Server:mysql-0:5.0.77-3.el5.ppc64", "5Server:mysql-0:5.0.77-3.el5.s390", "5Server:mysql-0:5.0.77-3.el5.s390x", "5Server:mysql-0:5.0.77-3.el5.src", "5Server:mysql-0:5.0.77-3.el5.x86_64", "5Server:mysql-bench-0:5.0.77-3.el5.i386", "5Server:mysql-bench-0:5.0.77-3.el5.ia64", "5Server:mysql-bench-0:5.0.77-3.el5.ppc", "5Server:mysql-bench-0:5.0.77-3.el5.s390x", "5Server:mysql-bench-0:5.0.77-3.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Server:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Server:mysql-devel-0:5.0.77-3.el5.i386", "5Server:mysql-devel-0:5.0.77-3.el5.ia64", "5Server:mysql-devel-0:5.0.77-3.el5.ppc", "5Server:mysql-devel-0:5.0.77-3.el5.ppc64", "5Server:mysql-devel-0:5.0.77-3.el5.s390", "5Server:mysql-devel-0:5.0.77-3.el5.s390x", "5Server:mysql-devel-0:5.0.77-3.el5.x86_64", "5Server:mysql-server-0:5.0.77-3.el5.i386", "5Server:mysql-server-0:5.0.77-3.el5.ia64", "5Server:mysql-server-0:5.0.77-3.el5.ppc", "5Server:mysql-server-0:5.0.77-3.el5.ppc64", "5Server:mysql-server-0:5.0.77-3.el5.s390x", "5Server:mysql-server-0:5.0.77-3.el5.x86_64", "5Server:mysql-test-0:5.0.77-3.el5.i386", "5Server:mysql-test-0:5.0.77-3.el5.ia64", "5Server:mysql-test-0:5.0.77-3.el5.ppc", "5Server:mysql-test-0:5.0.77-3.el5.s390x", "5Server:mysql-test-0:5.0.77-3.el5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-2446" }, { "category": "external", "summary": "RHBZ#511020", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=511020" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-2446", "url": "https://www.cve.org/CVERecord?id=CVE-2009-2446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-2446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2446" } ], "release_date": "2009-07-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-09-02T08:00:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:mysql-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-0:5.0.77-3.el5.src", "5Client-Workstation:mysql-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.x86_64", "5Client:mysql-0:5.0.77-3.el5.i386", "5Client:mysql-0:5.0.77-3.el5.ia64", "5Client:mysql-0:5.0.77-3.el5.ppc", "5Client:mysql-0:5.0.77-3.el5.ppc64", "5Client:mysql-0:5.0.77-3.el5.s390", "5Client:mysql-0:5.0.77-3.el5.s390x", "5Client:mysql-0:5.0.77-3.el5.src", "5Client:mysql-0:5.0.77-3.el5.x86_64", "5Client:mysql-bench-0:5.0.77-3.el5.i386", "5Client:mysql-bench-0:5.0.77-3.el5.ia64", "5Client:mysql-bench-0:5.0.77-3.el5.ppc", "5Client:mysql-bench-0:5.0.77-3.el5.s390x", "5Client:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client:mysql-devel-0:5.0.77-3.el5.i386", "5Client:mysql-devel-0:5.0.77-3.el5.ia64", "5Client:mysql-devel-0:5.0.77-3.el5.ppc", "5Client:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client:mysql-devel-0:5.0.77-3.el5.s390", "5Client:mysql-devel-0:5.0.77-3.el5.s390x", "5Client:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client:mysql-server-0:5.0.77-3.el5.i386", "5Client:mysql-server-0:5.0.77-3.el5.ia64", "5Client:mysql-server-0:5.0.77-3.el5.ppc", "5Client:mysql-server-0:5.0.77-3.el5.ppc64", "5Client:mysql-server-0:5.0.77-3.el5.s390x", "5Client:mysql-server-0:5.0.77-3.el5.x86_64", "5Client:mysql-test-0:5.0.77-3.el5.i386", "5Client:mysql-test-0:5.0.77-3.el5.ia64", "5Client:mysql-test-0:5.0.77-3.el5.ppc", "5Client:mysql-test-0:5.0.77-3.el5.s390x", "5Client:mysql-test-0:5.0.77-3.el5.x86_64", "5Server:mysql-0:5.0.77-3.el5.i386", "5Server:mysql-0:5.0.77-3.el5.ia64", "5Server:mysql-0:5.0.77-3.el5.ppc", "5Server:mysql-0:5.0.77-3.el5.ppc64", "5Server:mysql-0:5.0.77-3.el5.s390", "5Server:mysql-0:5.0.77-3.el5.s390x", "5Server:mysql-0:5.0.77-3.el5.src", "5Server:mysql-0:5.0.77-3.el5.x86_64", "5Server:mysql-bench-0:5.0.77-3.el5.i386", "5Server:mysql-bench-0:5.0.77-3.el5.ia64", "5Server:mysql-bench-0:5.0.77-3.el5.ppc", "5Server:mysql-bench-0:5.0.77-3.el5.s390x", "5Server:mysql-bench-0:5.0.77-3.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Server:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Server:mysql-devel-0:5.0.77-3.el5.i386", "5Server:mysql-devel-0:5.0.77-3.el5.ia64", "5Server:mysql-devel-0:5.0.77-3.el5.ppc", "5Server:mysql-devel-0:5.0.77-3.el5.ppc64", "5Server:mysql-devel-0:5.0.77-3.el5.s390", "5Server:mysql-devel-0:5.0.77-3.el5.s390x", "5Server:mysql-devel-0:5.0.77-3.el5.x86_64", "5Server:mysql-server-0:5.0.77-3.el5.i386", "5Server:mysql-server-0:5.0.77-3.el5.ia64", "5Server:mysql-server-0:5.0.77-3.el5.ppc", "5Server:mysql-server-0:5.0.77-3.el5.ppc64", "5Server:mysql-server-0:5.0.77-3.el5.s390x", "5Server:mysql-server-0:5.0.77-3.el5.x86_64", "5Server:mysql-test-0:5.0.77-3.el5.i386", "5Server:mysql-test-0:5.0.77-3.el5.ia64", "5Server:mysql-test-0:5.0.77-3.el5.ppc", "5Server:mysql-test-0:5.0.77-3.el5.s390x", "5Server:mysql-test-0:5.0.77-3.el5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1289" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 3.5, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:S/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-Workstation:mysql-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-0:5.0.77-3.el5.src", "5Client-Workstation:mysql-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-server-0:5.0.77-3.el5.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.i386", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ia64", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.ppc", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.s390x", "5Client-Workstation:mysql-test-0:5.0.77-3.el5.x86_64", "5Client:mysql-0:5.0.77-3.el5.i386", "5Client:mysql-0:5.0.77-3.el5.ia64", "5Client:mysql-0:5.0.77-3.el5.ppc", "5Client:mysql-0:5.0.77-3.el5.ppc64", "5Client:mysql-0:5.0.77-3.el5.s390", "5Client:mysql-0:5.0.77-3.el5.s390x", "5Client:mysql-0:5.0.77-3.el5.src", "5Client:mysql-0:5.0.77-3.el5.x86_64", "5Client:mysql-bench-0:5.0.77-3.el5.i386", "5Client:mysql-bench-0:5.0.77-3.el5.ia64", "5Client:mysql-bench-0:5.0.77-3.el5.ppc", "5Client:mysql-bench-0:5.0.77-3.el5.s390x", "5Client:mysql-bench-0:5.0.77-3.el5.x86_64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Client:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Client:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Client:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Client:mysql-devel-0:5.0.77-3.el5.i386", "5Client:mysql-devel-0:5.0.77-3.el5.ia64", "5Client:mysql-devel-0:5.0.77-3.el5.ppc", "5Client:mysql-devel-0:5.0.77-3.el5.ppc64", "5Client:mysql-devel-0:5.0.77-3.el5.s390", "5Client:mysql-devel-0:5.0.77-3.el5.s390x", "5Client:mysql-devel-0:5.0.77-3.el5.x86_64", "5Client:mysql-server-0:5.0.77-3.el5.i386", "5Client:mysql-server-0:5.0.77-3.el5.ia64", "5Client:mysql-server-0:5.0.77-3.el5.ppc", "5Client:mysql-server-0:5.0.77-3.el5.ppc64", "5Client:mysql-server-0:5.0.77-3.el5.s390x", "5Client:mysql-server-0:5.0.77-3.el5.x86_64", "5Client:mysql-test-0:5.0.77-3.el5.i386", "5Client:mysql-test-0:5.0.77-3.el5.ia64", "5Client:mysql-test-0:5.0.77-3.el5.ppc", "5Client:mysql-test-0:5.0.77-3.el5.s390x", "5Client:mysql-test-0:5.0.77-3.el5.x86_64", "5Server:mysql-0:5.0.77-3.el5.i386", "5Server:mysql-0:5.0.77-3.el5.ia64", "5Server:mysql-0:5.0.77-3.el5.ppc", "5Server:mysql-0:5.0.77-3.el5.ppc64", "5Server:mysql-0:5.0.77-3.el5.s390", "5Server:mysql-0:5.0.77-3.el5.s390x", "5Server:mysql-0:5.0.77-3.el5.src", "5Server:mysql-0:5.0.77-3.el5.x86_64", "5Server:mysql-bench-0:5.0.77-3.el5.i386", "5Server:mysql-bench-0:5.0.77-3.el5.ia64", "5Server:mysql-bench-0:5.0.77-3.el5.ppc", "5Server:mysql-bench-0:5.0.77-3.el5.s390x", "5Server:mysql-bench-0:5.0.77-3.el5.x86_64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.i386", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ia64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc", "5Server:mysql-debuginfo-0:5.0.77-3.el5.ppc64", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390", "5Server:mysql-debuginfo-0:5.0.77-3.el5.s390x", "5Server:mysql-debuginfo-0:5.0.77-3.el5.x86_64", "5Server:mysql-devel-0:5.0.77-3.el5.i386", "5Server:mysql-devel-0:5.0.77-3.el5.ia64", "5Server:mysql-devel-0:5.0.77-3.el5.ppc", "5Server:mysql-devel-0:5.0.77-3.el5.ppc64", "5Server:mysql-devel-0:5.0.77-3.el5.s390", "5Server:mysql-devel-0:5.0.77-3.el5.s390x", "5Server:mysql-devel-0:5.0.77-3.el5.x86_64", "5Server:mysql-server-0:5.0.77-3.el5.i386", "5Server:mysql-server-0:5.0.77-3.el5.ia64", "5Server:mysql-server-0:5.0.77-3.el5.ppc", "5Server:mysql-server-0:5.0.77-3.el5.ppc64", "5Server:mysql-server-0:5.0.77-3.el5.s390x", "5Server:mysql-server-0:5.0.77-3.el5.x86_64", "5Server:mysql-test-0:5.0.77-3.el5.i386", "5Server:mysql-test-0:5.0.77-3.el5.ia64", "5Server:mysql-test-0:5.0.77-3.el5.ppc", "5Server:mysql-test-0:5.0.77-3.el5.s390x", "5Server:mysql-test-0:5.0.77-3.el5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "MySQL: Format string vulnerability by manipulation with database instances (crash)" } ] }
rhsa-2009_1461
Vulnerability from csaf_redhat
Published
2009-09-23 21:38
Modified
2024-11-05 17:08
Summary
Red Hat Security Advisory: Red Hat Application Stack v2.4 security and enhancement update
Notes
Topic
Red Hat Application Stack v2.4 is now available. This update fixes several
security issues and adds various enhancements.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
Red Hat Application Stack v2.4 is an integrated open source application
stack, that includes Red Hat Enterprise Linux 5 and JBoss Enterprise
Application Platform (EAP). JBoss EAP is provided through the JBoss EAP
channels on the Red Hat Network.
PostgreSQL was updated to version 8.2.14, fixing the following security
issues:
A flaw was found in the way PostgreSQL handles LDAP-based authentication.
If PostgreSQL was configured to use LDAP authentication and the LDAP server
was configured to allow anonymous binds, anyone able to connect to a given
database could use this flaw to log in as any database user, including a
PostgreSQL superuser, without supplying a password. (CVE-2009-3231)
It was discovered that the upstream patch for CVE-2007-6600 included in the
Red Hat Security Advisory RHSA-2008:0040 did not include protection against
misuse of the RESET ROLE and RESET SESSION AUTHORIZATION commands. An
authenticated user could use this flaw to install malicious code that would
later execute with superuser privileges. (CVE-2009-3230)
A flaw was found in the way PostgreSQL handles external plug-ins. This flaw
could allow remote, authenticated users without superuser privileges to
crash the back-end server by using the LOAD command on libraries in
"/var/lib/pgsql/plugins/" that have already been loaded, causing a
temporary denial of service during crash recovery. (CVE-2009-3229)
MySQL was updated to version 5.0.84, fixing the following security issues:
An insufficient HTML entities quoting flaw was found in the mysql command
line client's HTML output mode. If an attacker was able to inject arbitrary
HTML tags into data stored in a MySQL database, which was later retrieved
using the mysql command line client and its HTML output mode, they could
perform a cross-site scripting (XSS) attack against victims viewing the
HTML output in a web browser. (CVE-2008-4456)
Multiple format string flaws were found in the way the MySQL server logs
user commands when creating and deleting databases. A remote, authenticated
attacker with permissions to CREATE and DROP databases could use these
flaws to formulate a specifically-crafted SQL command that would cause a
temporary denial of service (open connections to mysqld are terminated).
(CVE-2009-2446)
Note: To exploit the CVE-2009-2446 flaws, the general query log (the mysqld
"--log" command line option or the "log" option in "/etc/my.cnf") must be
enabled. This logging is not enabled by default.
PHP was updated to version 5.2.10, fixing the following security issue:
An insufficient input validation flaw was discovered in the PHP
exif_read_data() function, used to read Exchangeable image file format
(Exif) metadata from images. An attacker could create a specially-crafted
image that could cause the PHP interpreter to crash or disclose portions of
its memory while reading the Exif metadata from the image. (CVE-2009-2687)
Apache httpd has been updated with backported patches to correct the
following security issues:
A NULL pointer dereference flaw was found in the Apache mod_proxy_ftp
module. A malicious FTP server to which requests are being proxied could
use this flaw to crash an httpd child process via a malformed reply to the
EPSV or PASV commands, resulting in a limited denial of service.
(CVE-2009-3094)
A second flaw was found in the Apache mod_proxy_ftp module. In a reverse
proxy configuration, a remote attacker could use this flaw to bypass
intended access restrictions by creating a carefully-crafted HTTP
Authorization header, allowing the attacker to send arbitrary commands to
the FTP server. (CVE-2009-3095)
Also, the following packages have been updated:
* postgresql-jdbc to 8.2.510
* php-pear to 1.8.1
* perl-DBI to 1.609
* perl-DBD-MySQL to 4.012
All users should upgrade to these updated packages, which resolve these
issues. Users must restart the individual services, including postgresql,
mysqld, and httpd, for this update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Red Hat Application Stack v2.4 is now available. This update fixes several\nsecurity issues and adds various enhancements.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "Red Hat Application Stack v2.4 is an integrated open source application\nstack, that includes Red Hat Enterprise Linux 5 and JBoss Enterprise\nApplication Platform (EAP). JBoss EAP is provided through the JBoss EAP\nchannels on the Red Hat Network.\n\nPostgreSQL was updated to version 8.2.14, fixing the following security\nissues:\n\nA flaw was found in the way PostgreSQL handles LDAP-based authentication.\nIf PostgreSQL was configured to use LDAP authentication and the LDAP server\nwas configured to allow anonymous binds, anyone able to connect to a given\ndatabase could use this flaw to log in as any database user, including a\nPostgreSQL superuser, without supplying a password. (CVE-2009-3231)\n\nIt was discovered that the upstream patch for CVE-2007-6600 included in the\nRed Hat Security Advisory RHSA-2008:0040 did not include protection against\nmisuse of the RESET ROLE and RESET SESSION AUTHORIZATION commands. An\nauthenticated user could use this flaw to install malicious code that would\nlater execute with superuser privileges. (CVE-2009-3230)\n\nA flaw was found in the way PostgreSQL handles external plug-ins. This flaw\ncould allow remote, authenticated users without superuser privileges to\ncrash the back-end server by using the LOAD command on libraries in\n\"/var/lib/pgsql/plugins/\" that have already been loaded, causing a\ntemporary denial of service during crash recovery. (CVE-2009-3229)\n\nMySQL was updated to version 5.0.84, fixing the following security issues:\n\nAn insufficient HTML entities quoting flaw was found in the mysql command\nline client\u0027s HTML output mode. If an attacker was able to inject arbitrary\nHTML tags into data stored in a MySQL database, which was later retrieved\nusing the mysql command line client and its HTML output mode, they could\nperform a cross-site scripting (XSS) attack against victims viewing the\nHTML output in a web browser. (CVE-2008-4456)\n\nMultiple format string flaws were found in the way the MySQL server logs\nuser commands when creating and deleting databases. A remote, authenticated\nattacker with permissions to CREATE and DROP databases could use these\nflaws to formulate a specifically-crafted SQL command that would cause a\ntemporary denial of service (open connections to mysqld are terminated).\n(CVE-2009-2446)\n\nNote: To exploit the CVE-2009-2446 flaws, the general query log (the mysqld\n\"--log\" command line option or the \"log\" option in \"/etc/my.cnf\") must be\nenabled. This logging is not enabled by default.\n\nPHP was updated to version 5.2.10, fixing the following security issue:\n\nAn insufficient input validation flaw was discovered in the PHP\nexif_read_data() function, used to read Exchangeable image file format\n(Exif) metadata from images. An attacker could create a specially-crafted\nimage that could cause the PHP interpreter to crash or disclose portions of\nits memory while reading the Exif metadata from the image. (CVE-2009-2687)\n\nApache httpd has been updated with backported patches to correct the\nfollowing security issues:\n\nA NULL pointer dereference flaw was found in the Apache mod_proxy_ftp\nmodule. A malicious FTP server to which requests are being proxied could\nuse this flaw to crash an httpd child process via a malformed reply to the\nEPSV or PASV commands, resulting in a limited denial of service.\n(CVE-2009-3094)\n\nA second flaw was found in the Apache mod_proxy_ftp module. In a reverse\nproxy configuration, a remote attacker could use this flaw to bypass\nintended access restrictions by creating a carefully-crafted HTTP\nAuthorization header, allowing the attacker to send arbitrary commands to\nthe FTP server. (CVE-2009-3095)\n\nAlso, the following packages have been updated:\n\n* postgresql-jdbc to 8.2.510\n* php-pear to 1.8.1\n* perl-DBI to 1.609\n* perl-DBD-MySQL to 4.012\n\nAll users should upgrade to these updated packages, which resolve these\nissues. Users must restart the individual services, including postgresql,\nmysqld, and httpd, for this update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2009:1461", "url": "https://access.redhat.com/errata/RHSA-2009:1461" }, { "category": "external", "summary": "http://www.redhat.com/security/updates/classification/#important", "url": "http://www.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "466518", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=466518" }, { "category": "external", "summary": "506896", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=506896" }, { "category": "external", "summary": "511020", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=511020" }, { "category": "external", "summary": "521619", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=521619" }, { "category": "external", "summary": "522084", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=522084" }, { "category": "external", "summary": "522085", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=522085" }, { "category": "external", "summary": "522092", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=522092" }, { "category": "external", "summary": "522209", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=522209" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1461.json" } ], "title": "Red Hat Security Advisory: Red Hat Application Stack v2.4 security and enhancement update", "tracking": { "current_release_date": "2024-11-05T17:08:51+00:00", "generator": { "date": "2024-11-05T17:08:51+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2009:1461", "initial_release_date": "2009-09-23T21:38:00+00:00", "revision_history": [ { "date": "2009-09-23T21:38:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2009-09-23T17:38:40+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T17:08:51+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product": { "name": "Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_application_stack:2" } } } ], "category": "product_family", "name": "Red Hat Application Stack" }, { "branches": [ { "category": "product_version", "name": "postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "product": { "name": "postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "product_id": "postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-jdbc@8.2.510-1jpp.el5s2?arch=src" } } }, { "category": "product_version", "name": "php-0:5.2.10-1.el5s2.src", "product": { "name": "php-0:5.2.10-1.el5s2.src", "product_id": "php-0:5.2.10-1.el5s2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/php@5.2.10-1.el5s2?arch=src" } } }, { "category": "product_version", "name": "php-pear-1:1.8.1-2.el5s2.src", "product": { "name": "php-pear-1:1.8.1-2.el5s2.src", "product_id": "php-pear-1:1.8.1-2.el5s2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-pear@1.8.1-2.el5s2?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "perl-DBI-0:1.609-1.el5s2.src", "product": { "name": "perl-DBI-0:1.609-1.el5s2.src", "product_id": "perl-DBI-0:1.609-1.el5s2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/perl-DBI@1.609-1.el5s2?arch=src" } } }, { "category": "product_version", "name": "perl-DBD-MySQL-0:4.012-1.el5s2.src", "product": { "name": "perl-DBD-MySQL-0:4.012-1.el5s2.src", "product_id": "perl-DBD-MySQL-0:4.012-1.el5s2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/perl-DBD-MySQL@4.012-1.el5s2?arch=src" } } }, { "category": "product_version", "name": "mysql-0:5.0.84-2.el5s2.src", "product": { "name": "mysql-0:5.0.84-2.el5s2.src", "product_id": "mysql-0:5.0.84-2.el5s2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.84-2.el5s2?arch=src" } } }, { "category": "product_version", "name": "postgresql-0:8.2.14-1.el5s2.src", "product": { "name": "postgresql-0:8.2.14-1.el5s2.src", "product_id": "postgresql-0:8.2.14-1.el5s2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql@8.2.14-1.el5s2?arch=src" } } }, { "category": "product_version", "name": "httpd-0:2.2.13-2.el5s2.src", "product": { "name": "httpd-0:2.2.13-2.el5s2.src", "product_id": "httpd-0:2.2.13-2.el5s2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd@2.2.13-2.el5s2?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "product": { "name": "postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "product_id": "postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-jdbc@8.2.510-1jpp.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "product": { "name": "postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "product_id": "postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-jdbc-debuginfo@8.2.510-1jpp.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-dba-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-dba-0:5.2.10-1.el5s2.x86_64", "product_id": "php-dba-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-dba@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-gd-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-gd-0:5.2.10-1.el5s2.x86_64", "product_id": "php-gd-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-gd@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-0:5.2.10-1.el5s2.x86_64", "product_id": "php-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "product_id": "php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-xmlrpc@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-mbstring-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-mbstring-0:5.2.10-1.el5s2.x86_64", "product_id": "php-mbstring-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-mbstring@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-debuginfo-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-debuginfo-0:5.2.10-1.el5s2.x86_64", "product_id": "php-debuginfo-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-debuginfo@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-xml-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-xml-0:5.2.10-1.el5s2.x86_64", "product_id": "php-xml-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-xml@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-ncurses-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-ncurses-0:5.2.10-1.el5s2.x86_64", "product_id": "php-ncurses-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-ncurses@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-odbc-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-odbc-0:5.2.10-1.el5s2.x86_64", "product_id": "php-odbc-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-odbc@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-mysql-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-mysql-0:5.2.10-1.el5s2.x86_64", "product_id": "php-mysql-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-mysql@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-snmp-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-snmp-0:5.2.10-1.el5s2.x86_64", "product_id": "php-snmp-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-snmp@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-bcmath-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-bcmath-0:5.2.10-1.el5s2.x86_64", "product_id": "php-bcmath-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-bcmath@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-pgsql-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-pgsql-0:5.2.10-1.el5s2.x86_64", "product_id": "php-pgsql-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-pgsql@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-cli-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-cli-0:5.2.10-1.el5s2.x86_64", "product_id": "php-cli-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-cli@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-devel-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-devel-0:5.2.10-1.el5s2.x86_64", "product_id": "php-devel-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-devel@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-soap-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-soap-0:5.2.10-1.el5s2.x86_64", "product_id": "php-soap-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-soap@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-ldap-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-ldap-0:5.2.10-1.el5s2.x86_64", "product_id": "php-ldap-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-ldap@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-common-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-common-0:5.2.10-1.el5s2.x86_64", "product_id": "php-common-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-common@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-pdo-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-pdo-0:5.2.10-1.el5s2.x86_64", "product_id": "php-pdo-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-pdo@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "php-imap-0:5.2.10-1.el5s2.x86_64", "product": { "name": "php-imap-0:5.2.10-1.el5s2.x86_64", "product_id": "php-imap-0:5.2.10-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-imap@5.2.10-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "product": { "name": "perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "product_id": "perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perl-DBI-debuginfo@1.609-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "perl-DBI-0:1.609-1.el5s2.x86_64", "product": { "name": "perl-DBI-0:1.609-1.el5s2.x86_64", "product_id": "perl-DBI-0:1.609-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perl-DBI@1.609-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "product": { "name": "perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "product_id": "perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perl-DBD-MySQL@4.012-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "product": { "name": "perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "product_id": "perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/perl-DBD-MySQL-debuginfo@4.012-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.84-2.el5s2.x86_64", "product": { "name": "mysql-test-0:5.0.84-2.el5s2.x86_64", "product_id": "mysql-test-0:5.0.84-2.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.84-2.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-libs-0:5.0.84-2.el5s2.x86_64", "product": { "name": "mysql-libs-0:5.0.84-2.el5s2.x86_64", "product_id": "mysql-libs-0:5.0.84-2.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-libs@5.0.84-2.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.84-2.el5s2.x86_64", "product": { "name": "mysql-devel-0:5.0.84-2.el5s2.x86_64", "product_id": "mysql-devel-0:5.0.84-2.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.84-2.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.84-2.el5s2.x86_64", "product": { "name": "mysql-bench-0:5.0.84-2.el5s2.x86_64", "product_id": "mysql-bench-0:5.0.84-2.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.84-2.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-cluster-0:5.0.84-2.el5s2.x86_64", "product": { "name": "mysql-cluster-0:5.0.84-2.el5s2.x86_64", "product_id": "mysql-cluster-0:5.0.84-2.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-cluster@5.0.84-2.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.84-2.el5s2.x86_64", "product": { "name": "mysql-server-0:5.0.84-2.el5s2.x86_64", "product_id": "mysql-server-0:5.0.84-2.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.84-2.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-0:5.0.84-2.el5s2.x86_64", "product": { "name": "mysql-0:5.0.84-2.el5s2.x86_64", "product_id": "mysql-0:5.0.84-2.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.84-2.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "product": { "name": "mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "product_id": "mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.84-2.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "product": { "name": "postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "product_id": "postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-tcl@8.2.14-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "postgresql-devel-0:8.2.14-1.el5s2.x86_64", "product": { "name": "postgresql-devel-0:8.2.14-1.el5s2.x86_64", "product_id": "postgresql-devel-0:8.2.14-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-devel@8.2.14-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "postgresql-server-0:8.2.14-1.el5s2.x86_64", "product": { "name": "postgresql-server-0:8.2.14-1.el5s2.x86_64", "product_id": "postgresql-server-0:8.2.14-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-server@8.2.14-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "postgresql-python-0:8.2.14-1.el5s2.x86_64", "product": { "name": "postgresql-python-0:8.2.14-1.el5s2.x86_64", "product_id": "postgresql-python-0:8.2.14-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-python@8.2.14-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "product": { "name": "postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "product_id": "postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-plperl@8.2.14-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "product": { "name": "postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "product_id": "postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-contrib@8.2.14-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "postgresql-0:8.2.14-1.el5s2.x86_64", "product": { "name": "postgresql-0:8.2.14-1.el5s2.x86_64", "product_id": "postgresql-0:8.2.14-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql@8.2.14-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "product": { "name": "postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "product_id": "postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-debuginfo@8.2.14-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "product": { "name": "postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "product_id": "postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-pltcl@8.2.14-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "postgresql-libs-0:8.2.14-1.el5s2.x86_64", "product": { "name": "postgresql-libs-0:8.2.14-1.el5s2.x86_64", "product_id": "postgresql-libs-0:8.2.14-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-libs@8.2.14-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "postgresql-test-0:8.2.14-1.el5s2.x86_64", "product": { "name": "postgresql-test-0:8.2.14-1.el5s2.x86_64", "product_id": "postgresql-test-0:8.2.14-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-test@8.2.14-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "product": { "name": "postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "product_id": "postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-plpython@8.2.14-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "postgresql-docs-0:8.2.14-1.el5s2.x86_64", "product": { "name": "postgresql-docs-0:8.2.14-1.el5s2.x86_64", "product_id": "postgresql-docs-0:8.2.14-1.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-docs@8.2.14-1.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "httpd-manual-0:2.2.13-2.el5s2.x86_64", "product": { "name": "httpd-manual-0:2.2.13-2.el5s2.x86_64", "product_id": "httpd-manual-0:2.2.13-2.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-manual@2.2.13-2.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "httpd-devel-0:2.2.13-2.el5s2.x86_64", "product": { "name": "httpd-devel-0:2.2.13-2.el5s2.x86_64", "product_id": "httpd-devel-0:2.2.13-2.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-devel@2.2.13-2.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "product": { "name": "httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "product_id": "httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.13-2.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "httpd-0:2.2.13-2.el5s2.x86_64", "product": { "name": "httpd-0:2.2.13-2.el5s2.x86_64", "product_id": "httpd-0:2.2.13-2.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd@2.2.13-2.el5s2?arch=x86_64" } } }, { "category": "product_version", "name": "mod_ssl-1:2.2.13-2.el5s2.x86_64", "product": { "name": "mod_ssl-1:2.2.13-2.el5s2.x86_64", "product_id": "mod_ssl-1:2.2.13-2.el5s2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ssl@2.2.13-2.el5s2?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "product": { "name": "postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "product_id": "postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-jdbc@8.2.510-1jpp.el5s2?arch=i386" } } }, { "category": "product_version", "name": "postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "product": { "name": "postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "product_id": "postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-jdbc-debuginfo@8.2.510-1jpp.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-dba-0:5.2.10-1.el5s2.i386", "product": { "name": "php-dba-0:5.2.10-1.el5s2.i386", "product_id": "php-dba-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-dba@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-gd-0:5.2.10-1.el5s2.i386", "product": { "name": "php-gd-0:5.2.10-1.el5s2.i386", "product_id": "php-gd-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-gd@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-0:5.2.10-1.el5s2.i386", "product": { "name": "php-0:5.2.10-1.el5s2.i386", "product_id": "php-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-xmlrpc-0:5.2.10-1.el5s2.i386", "product": { "name": "php-xmlrpc-0:5.2.10-1.el5s2.i386", "product_id": "php-xmlrpc-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-xmlrpc@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-mbstring-0:5.2.10-1.el5s2.i386", "product": { "name": "php-mbstring-0:5.2.10-1.el5s2.i386", "product_id": "php-mbstring-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-mbstring@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-debuginfo-0:5.2.10-1.el5s2.i386", "product": { "name": "php-debuginfo-0:5.2.10-1.el5s2.i386", "product_id": "php-debuginfo-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-debuginfo@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-xml-0:5.2.10-1.el5s2.i386", "product": { "name": "php-xml-0:5.2.10-1.el5s2.i386", "product_id": "php-xml-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-xml@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-ncurses-0:5.2.10-1.el5s2.i386", "product": { "name": "php-ncurses-0:5.2.10-1.el5s2.i386", "product_id": "php-ncurses-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-ncurses@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-odbc-0:5.2.10-1.el5s2.i386", "product": { "name": "php-odbc-0:5.2.10-1.el5s2.i386", "product_id": "php-odbc-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-odbc@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-mysql-0:5.2.10-1.el5s2.i386", "product": { "name": "php-mysql-0:5.2.10-1.el5s2.i386", "product_id": "php-mysql-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-mysql@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-snmp-0:5.2.10-1.el5s2.i386", "product": { "name": "php-snmp-0:5.2.10-1.el5s2.i386", "product_id": "php-snmp-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-snmp@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-bcmath-0:5.2.10-1.el5s2.i386", "product": { "name": "php-bcmath-0:5.2.10-1.el5s2.i386", "product_id": "php-bcmath-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-bcmath@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-pgsql-0:5.2.10-1.el5s2.i386", "product": { "name": "php-pgsql-0:5.2.10-1.el5s2.i386", "product_id": "php-pgsql-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-pgsql@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-cli-0:5.2.10-1.el5s2.i386", "product": { "name": "php-cli-0:5.2.10-1.el5s2.i386", "product_id": "php-cli-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-cli@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-devel-0:5.2.10-1.el5s2.i386", "product": { "name": "php-devel-0:5.2.10-1.el5s2.i386", "product_id": "php-devel-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-devel@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-soap-0:5.2.10-1.el5s2.i386", "product": { "name": "php-soap-0:5.2.10-1.el5s2.i386", "product_id": "php-soap-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-soap@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-ldap-0:5.2.10-1.el5s2.i386", "product": { "name": "php-ldap-0:5.2.10-1.el5s2.i386", "product_id": "php-ldap-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-ldap@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-common-0:5.2.10-1.el5s2.i386", "product": { "name": "php-common-0:5.2.10-1.el5s2.i386", "product_id": "php-common-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-common@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-pdo-0:5.2.10-1.el5s2.i386", "product": { "name": "php-pdo-0:5.2.10-1.el5s2.i386", "product_id": "php-pdo-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-pdo@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "php-imap-0:5.2.10-1.el5s2.i386", "product": { "name": "php-imap-0:5.2.10-1.el5s2.i386", "product_id": "php-imap-0:5.2.10-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-imap@5.2.10-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "product": { "name": "perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "product_id": "perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/perl-DBI-debuginfo@1.609-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "perl-DBI-0:1.609-1.el5s2.i386", "product": { "name": "perl-DBI-0:1.609-1.el5s2.i386", "product_id": "perl-DBI-0:1.609-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/perl-DBI@1.609-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "perl-DBD-MySQL-0:4.012-1.el5s2.i386", "product": { "name": "perl-DBD-MySQL-0:4.012-1.el5s2.i386", "product_id": "perl-DBD-MySQL-0:4.012-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/perl-DBD-MySQL@4.012-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "product": { "name": "perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "product_id": "perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/perl-DBD-MySQL-debuginfo@4.012-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.84-2.el5s2.i386", "product": { "name": "mysql-test-0:5.0.84-2.el5s2.i386", "product_id": "mysql-test-0:5.0.84-2.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.84-2.el5s2?arch=i386" } } }, { "category": "product_version", "name": "mysql-libs-0:5.0.84-2.el5s2.i386", "product": { "name": "mysql-libs-0:5.0.84-2.el5s2.i386", "product_id": "mysql-libs-0:5.0.84-2.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-libs@5.0.84-2.el5s2?arch=i386" } } }, { "category": "product_version", "name": "mysql-devel-0:5.0.84-2.el5s2.i386", "product": { "name": "mysql-devel-0:5.0.84-2.el5s2.i386", "product_id": "mysql-devel-0:5.0.84-2.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.84-2.el5s2?arch=i386" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.84-2.el5s2.i386", "product": { "name": "mysql-bench-0:5.0.84-2.el5s2.i386", "product_id": "mysql-bench-0:5.0.84-2.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.84-2.el5s2?arch=i386" } } }, { "category": "product_version", "name": "mysql-cluster-0:5.0.84-2.el5s2.i386", "product": { "name": "mysql-cluster-0:5.0.84-2.el5s2.i386", "product_id": "mysql-cluster-0:5.0.84-2.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-cluster@5.0.84-2.el5s2?arch=i386" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.84-2.el5s2.i386", "product": { "name": "mysql-server-0:5.0.84-2.el5s2.i386", "product_id": "mysql-server-0:5.0.84-2.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.84-2.el5s2?arch=i386" } } }, { "category": "product_version", "name": "mysql-0:5.0.84-2.el5s2.i386", "product": { "name": "mysql-0:5.0.84-2.el5s2.i386", "product_id": "mysql-0:5.0.84-2.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.84-2.el5s2?arch=i386" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:5.0.84-2.el5s2.i386", "product": { "name": "mysql-debuginfo-0:5.0.84-2.el5s2.i386", "product_id": "mysql-debuginfo-0:5.0.84-2.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.84-2.el5s2?arch=i386" } } }, { "category": "product_version", "name": "postgresql-tcl-0:8.2.14-1.el5s2.i386", "product": { "name": "postgresql-tcl-0:8.2.14-1.el5s2.i386", "product_id": "postgresql-tcl-0:8.2.14-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-tcl@8.2.14-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "postgresql-devel-0:8.2.14-1.el5s2.i386", "product": { "name": "postgresql-devel-0:8.2.14-1.el5s2.i386", "product_id": "postgresql-devel-0:8.2.14-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-devel@8.2.14-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "postgresql-server-0:8.2.14-1.el5s2.i386", "product": { "name": "postgresql-server-0:8.2.14-1.el5s2.i386", "product_id": "postgresql-server-0:8.2.14-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-server@8.2.14-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "postgresql-python-0:8.2.14-1.el5s2.i386", "product": { "name": "postgresql-python-0:8.2.14-1.el5s2.i386", "product_id": "postgresql-python-0:8.2.14-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-python@8.2.14-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "postgresql-plperl-0:8.2.14-1.el5s2.i386", "product": { "name": "postgresql-plperl-0:8.2.14-1.el5s2.i386", "product_id": "postgresql-plperl-0:8.2.14-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-plperl@8.2.14-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "postgresql-contrib-0:8.2.14-1.el5s2.i386", "product": { "name": "postgresql-contrib-0:8.2.14-1.el5s2.i386", "product_id": "postgresql-contrib-0:8.2.14-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-contrib@8.2.14-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "postgresql-0:8.2.14-1.el5s2.i386", "product": { "name": "postgresql-0:8.2.14-1.el5s2.i386", "product_id": "postgresql-0:8.2.14-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql@8.2.14-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "product": { "name": "postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "product_id": "postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-debuginfo@8.2.14-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "postgresql-pltcl-0:8.2.14-1.el5s2.i386", "product": { "name": "postgresql-pltcl-0:8.2.14-1.el5s2.i386", "product_id": "postgresql-pltcl-0:8.2.14-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-pltcl@8.2.14-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "postgresql-libs-0:8.2.14-1.el5s2.i386", "product": { "name": "postgresql-libs-0:8.2.14-1.el5s2.i386", "product_id": "postgresql-libs-0:8.2.14-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-libs@8.2.14-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "postgresql-test-0:8.2.14-1.el5s2.i386", "product": { "name": "postgresql-test-0:8.2.14-1.el5s2.i386", "product_id": "postgresql-test-0:8.2.14-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-test@8.2.14-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "postgresql-plpython-0:8.2.14-1.el5s2.i386", "product": { "name": "postgresql-plpython-0:8.2.14-1.el5s2.i386", "product_id": "postgresql-plpython-0:8.2.14-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-plpython@8.2.14-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "postgresql-docs-0:8.2.14-1.el5s2.i386", "product": { "name": "postgresql-docs-0:8.2.14-1.el5s2.i386", "product_id": "postgresql-docs-0:8.2.14-1.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/postgresql-docs@8.2.14-1.el5s2?arch=i386" } } }, { "category": "product_version", "name": "httpd-manual-0:2.2.13-2.el5s2.i386", "product": { "name": "httpd-manual-0:2.2.13-2.el5s2.i386", "product_id": "httpd-manual-0:2.2.13-2.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-manual@2.2.13-2.el5s2?arch=i386" } } }, { "category": "product_version", "name": "httpd-devel-0:2.2.13-2.el5s2.i386", "product": { "name": "httpd-devel-0:2.2.13-2.el5s2.i386", "product_id": "httpd-devel-0:2.2.13-2.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-devel@2.2.13-2.el5s2?arch=i386" } } }, { "category": "product_version", "name": "httpd-debuginfo-0:2.2.13-2.el5s2.i386", "product": { "name": "httpd-debuginfo-0:2.2.13-2.el5s2.i386", "product_id": "httpd-debuginfo-0:2.2.13-2.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.13-2.el5s2?arch=i386" } } }, { "category": "product_version", "name": "httpd-0:2.2.13-2.el5s2.i386", "product": { "name": "httpd-0:2.2.13-2.el5s2.i386", "product_id": "httpd-0:2.2.13-2.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/httpd@2.2.13-2.el5s2?arch=i386" } } }, { "category": "product_version", "name": "mod_ssl-1:2.2.13-2.el5s2.i386", "product": { "name": "mod_ssl-1:2.2.13-2.el5s2.i386", "product_id": "mod_ssl-1:2.2.13-2.el5s2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_ssl@2.2.13-2.el5s2?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "php-pear-1:1.8.1-2.el5s2.noarch", "product": { "name": "php-pear-1:1.8.1-2.el5s2.noarch", "product_id": "php-pear-1:1.8.1-2.el5s2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/php-pear@1.8.1-2.el5s2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "httpd-0:2.2.13-2.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386" }, "product_reference": "httpd-0:2.2.13-2.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-0:2.2.13-2.el5s2.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src" }, "product_reference": "httpd-0:2.2.13-2.el5s2.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-0:2.2.13-2.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64" }, "product_reference": "httpd-0:2.2.13-2.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-debuginfo-0:2.2.13-2.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386" }, "product_reference": "httpd-debuginfo-0:2.2.13-2.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-debuginfo-0:2.2.13-2.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64" }, "product_reference": "httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-devel-0:2.2.13-2.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386" }, "product_reference": "httpd-devel-0:2.2.13-2.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-devel-0:2.2.13-2.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64" }, "product_reference": "httpd-devel-0:2.2.13-2.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-manual-0:2.2.13-2.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386" }, "product_reference": "httpd-manual-0:2.2.13-2.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "httpd-manual-0:2.2.13-2.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64" }, "product_reference": "httpd-manual-0:2.2.13-2.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ssl-1:2.2.13-2.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386" }, "product_reference": "mod_ssl-1:2.2.13-2.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mod_ssl-1:2.2.13-2.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64" }, "product_reference": "mod_ssl-1:2.2.13-2.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.84-2.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386" }, "product_reference": "mysql-0:5.0.84-2.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.84-2.el5s2.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src" }, "product_reference": "mysql-0:5.0.84-2.el5s2.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.84-2.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64" }, "product_reference": "mysql-0:5.0.84-2.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.84-2.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386" }, "product_reference": "mysql-bench-0:5.0.84-2.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.84-2.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64" }, "product_reference": "mysql-bench-0:5.0.84-2.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-cluster-0:5.0.84-2.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386" }, "product_reference": "mysql-cluster-0:5.0.84-2.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-cluster-0:5.0.84-2.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64" }, "product_reference": "mysql-cluster-0:5.0.84-2.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.84-2.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386" }, "product_reference": "mysql-debuginfo-0:5.0.84-2.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.84-2.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64" }, "product_reference": "mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.84-2.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386" }, "product_reference": "mysql-devel-0:5.0.84-2.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.84-2.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64" }, "product_reference": "mysql-devel-0:5.0.84-2.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-libs-0:5.0.84-2.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386" }, "product_reference": "mysql-libs-0:5.0.84-2.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-libs-0:5.0.84-2.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64" }, "product_reference": "mysql-libs-0:5.0.84-2.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.84-2.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386" }, "product_reference": "mysql-server-0:5.0.84-2.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.84-2.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64" }, "product_reference": "mysql-server-0:5.0.84-2.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.84-2.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386" }, "product_reference": "mysql-test-0:5.0.84-2.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.84-2.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64" }, "product_reference": "mysql-test-0:5.0.84-2.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "perl-DBD-MySQL-0:4.012-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386" }, "product_reference": "perl-DBD-MySQL-0:4.012-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "perl-DBD-MySQL-0:4.012-1.el5s2.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src" }, "product_reference": "perl-DBD-MySQL-0:4.012-1.el5s2.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "perl-DBD-MySQL-0:4.012-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64" }, "product_reference": "perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386" }, "product_reference": "perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64" }, "product_reference": "perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "perl-DBI-0:1.609-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386" }, "product_reference": "perl-DBI-0:1.609-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "perl-DBI-0:1.609-1.el5s2.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src" }, "product_reference": "perl-DBI-0:1.609-1.el5s2.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "perl-DBI-0:1.609-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64" }, "product_reference": "perl-DBI-0:1.609-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "perl-DBI-debuginfo-0:1.609-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386" }, "product_reference": "perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64" }, "product_reference": "perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-0:5.2.10-1.el5s2.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-0:5.2.10-1.el5s2.src" }, "product_reference": "php-0:5.2.10-1.el5s2.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-bcmath-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-bcmath-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-bcmath-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-bcmath-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-cli-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-cli-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-cli-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-cli-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-common-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-common-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-common-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-common-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-dba-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-dba-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-dba-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-dba-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-debuginfo-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-debuginfo-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-debuginfo-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-debuginfo-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-devel-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-devel-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-devel-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-devel-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-gd-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-gd-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-gd-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-gd-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-imap-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-imap-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-imap-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-imap-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-ldap-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-ldap-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-ldap-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-ldap-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-mbstring-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-mbstring-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-mbstring-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-mbstring-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-mysql-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-mysql-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-mysql-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-mysql-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-ncurses-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-ncurses-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-ncurses-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-ncurses-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-odbc-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-odbc-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-odbc-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-odbc-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-pdo-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-pdo-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-pdo-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-pdo-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-pear-1:1.8.1-2.el5s2.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch" }, "product_reference": "php-pear-1:1.8.1-2.el5s2.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-pear-1:1.8.1-2.el5s2.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src" }, "product_reference": "php-pear-1:1.8.1-2.el5s2.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-pgsql-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-pgsql-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-pgsql-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-pgsql-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-snmp-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-snmp-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-snmp-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-snmp-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-soap-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-soap-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-soap-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-soap-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-xml-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-xml-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-xml-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-xml-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-xmlrpc-0:5.2.10-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386" }, "product_reference": "php-xmlrpc-0:5.2.10-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "php-xmlrpc-0:5.2.10-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64" }, "product_reference": "php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-0:8.2.14-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386" }, "product_reference": "postgresql-0:8.2.14-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-0:8.2.14-1.el5s2.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src" }, "product_reference": "postgresql-0:8.2.14-1.el5s2.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-0:8.2.14-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64" }, "product_reference": "postgresql-0:8.2.14-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-contrib-0:8.2.14-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386" }, "product_reference": "postgresql-contrib-0:8.2.14-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-contrib-0:8.2.14-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64" }, "product_reference": "postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-debuginfo-0:8.2.14-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386" }, "product_reference": "postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64" }, "product_reference": "postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-devel-0:8.2.14-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386" }, "product_reference": "postgresql-devel-0:8.2.14-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-devel-0:8.2.14-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64" }, "product_reference": "postgresql-devel-0:8.2.14-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-docs-0:8.2.14-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386" }, "product_reference": "postgresql-docs-0:8.2.14-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-docs-0:8.2.14-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64" }, "product_reference": "postgresql-docs-0:8.2.14-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386" }, "product_reference": "postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-jdbc-0:8.2.510-1jpp.el5s2.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src" }, "product_reference": "postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64" }, "product_reference": "postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386" }, "product_reference": "postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64" }, "product_reference": "postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-libs-0:8.2.14-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386" }, "product_reference": "postgresql-libs-0:8.2.14-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-libs-0:8.2.14-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64" }, "product_reference": "postgresql-libs-0:8.2.14-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-plperl-0:8.2.14-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386" }, "product_reference": "postgresql-plperl-0:8.2.14-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-plperl-0:8.2.14-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64" }, "product_reference": "postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-plpython-0:8.2.14-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386" }, "product_reference": "postgresql-plpython-0:8.2.14-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-plpython-0:8.2.14-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64" }, "product_reference": "postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-pltcl-0:8.2.14-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386" }, "product_reference": "postgresql-pltcl-0:8.2.14-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-pltcl-0:8.2.14-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64" }, "product_reference": "postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-python-0:8.2.14-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386" }, "product_reference": "postgresql-python-0:8.2.14-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-python-0:8.2.14-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64" }, "product_reference": "postgresql-python-0:8.2.14-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-server-0:8.2.14-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386" }, "product_reference": "postgresql-server-0:8.2.14-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-server-0:8.2.14-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64" }, "product_reference": "postgresql-server-0:8.2.14-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-tcl-0:8.2.14-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386" }, "product_reference": "postgresql-tcl-0:8.2.14-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-tcl-0:8.2.14-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64" }, "product_reference": "postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-test-0:8.2.14-1.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386" }, "product_reference": "postgresql-test-0:8.2.14-1.el5s2.i386", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "postgresql-test-0:8.2.14-1.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" }, "product_reference": "postgresql-test-0:8.2.14-1.el5s2.x86_64", "relates_to_product_reference": "5Server-Stacks" } ] }, "vulnerabilities": [ { "cve": "CVE-2008-4456", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2008-10-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "466518" } ], "notes": [ { "category": "description", "text": "Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document. NOTE: as of 20081031, the issue has not been fixed in MySQL 5.0.67.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: mysql command line client XSS flaw", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2008-4456" }, { "category": "external", "summary": "RHBZ#466518", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=466518" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2008-4456", "url": "https://www.cve.org/CVERecord?id=CVE-2008-4456" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-4456", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-4456" } ], "release_date": "2008-09-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-09-23T21:38:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1461" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 1.7, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:S/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "mysql: mysql command line client XSS flaw" }, { "cve": "CVE-2009-2446", "discovery_date": "2009-07-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "511020" } ], "notes": [ { "category": "description", "text": "Multiple format string vulnerabilities in the dispatch_command function in libmysqld/sql_parse.cc in mysqld in MySQL 4.0.0 through 5.0.83 allow remote authenticated users to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in a database name in a (1) COM_CREATE_DB or (2) COM_DROP_DB request. NOTE: some of these details are obtained from third party information.", "title": "Vulnerability description" }, { "category": "summary", "text": "MySQL: Format string vulnerability by manipulation with database instances (crash)", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-2446\n\nThe Red Hat Product Security has rated this issue as having low security impact, future MySQL package updates may address this flaw for Red Hat Enterprise Linux 3 and Red Hat Application Stack 2.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-2446" }, { "category": "external", "summary": "RHBZ#511020", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=511020" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-2446", "url": "https://www.cve.org/CVERecord?id=CVE-2009-2446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-2446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2446" } ], "release_date": "2009-07-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-09-23T21:38:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1461" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 3.5, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:S/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "MySQL: Format string vulnerability by manipulation with database instances (crash)" }, { "cve": "CVE-2009-2687", "discovery_date": "2009-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "506896" } ], "notes": [ { "category": "description", "text": "The exif_read_data function in the Exif module in PHP before 5.2.10 allows remote attackers to cause a denial of service (crash) via a malformed JPEG image with invalid offset fields, a different issue than CVE-2005-3353.", "title": "Vulnerability description" }, { "category": "summary", "text": "php: exif_read_data crash on corrupted JPEG files", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-2687" }, { "category": "external", "summary": "RHBZ#506896", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=506896" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-2687", "url": "https://www.cve.org/CVERecord?id=CVE-2009-2687" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-2687", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2687" } ], "release_date": "2009-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-09-23T21:38:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1461" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "php: exif_read_data crash on corrupted JPEG files" }, { "cve": "CVE-2009-3094", "discovery_date": "2009-09-04T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "521619" } ], "notes": [ { "category": "description", "text": "The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module in the Apache HTTP Server 2.0.63 and 2.2.13 allows remote FTP servers to cause a denial of service (NULL pointer dereference and child process crash) via a malformed reply to an EPSV command.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: NULL pointer defer in mod_proxy_ftp caused by crafted EPSV and PASV reply", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3094" }, { "category": "external", "summary": "RHBZ#521619", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=521619" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3094", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3094" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3094", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3094" } ], "release_date": "2009-09-02T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-09-23T21:38:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1461" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: NULL pointer defer in mod_proxy_ftp caused by crafted EPSV and PASV reply" }, { "cve": "CVE-2009-3095", "discovery_date": "2009-09-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "522209" } ], "notes": [ { "category": "description", "text": "The mod_proxy_ftp module in the Apache HTTP Server allows remote attackers to bypass intended access restrictions and send arbitrary commands to an FTP server via vectors related to the embedding of these commands in the Authorization HTTP header, as demonstrated by a certain module in VulnDisco Pack Professional 8.11.", "title": "Vulnerability description" }, { "category": "summary", "text": "httpd: mod_proxy_ftp FTP command injection via Authorization HTTP header", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3095" }, { "category": "external", "summary": "RHBZ#522209", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=522209" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3095", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3095" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3095", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3095" } ], "release_date": "2009-09-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-09-23T21:38:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1461" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "httpd: mod_proxy_ftp FTP command injection via Authorization HTTP header" }, { "cve": "CVE-2009-3229", "discovery_date": "2009-09-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "522092" } ], "notes": [ { "category": "description", "text": "The core server component in PostgreSQL 8.4 before 8.4.1, 8.3 before 8.3.8, and 8.2 before 8.2.14 allows remote authenticated users to cause a denial of service (backend shutdown) by \"re-LOAD-ing\" libraries from a certain plugins directory.", "title": "Vulnerability description" }, { "category": "summary", "text": "postgresql: authenticated user server DoS via plugin re-LOAD-ing", "title": "Vulnerability summary" }, { "category": "other", "text": "Not vulnerable. This issue did not affect the versions of PostgreSQL as shipped with Red Hat Enterprise Linux 3, 4, or 5.\n\nIn PostgreSQL versions prior to 8.2, only database administrator was able to LOAD additional plugins and use it to cause server crash. However, this does not bypass trust boundary, so its not a security flaw for older PostgreSQL versions. Additionally, no plugins are shipped in Red Hat PostgreSQL packages by default.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3229" }, { "category": "external", "summary": "RHBZ#522092", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=522092" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3229", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3229" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3229", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3229" } ], "release_date": "2009-09-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-09-23T21:38:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1461" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 4.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "postgresql: authenticated user server DoS via plugin re-LOAD-ing" }, { "cve": "CVE-2009-3230", "discovery_date": "2009-09-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "522085" } ], "notes": [ { "category": "description", "text": "The core server component in PostgreSQL 8.4 before 8.4.1, 8.3 before 8.3.8, 8.2 before 8.2.14, 8.1 before 8.1.18, 8.0 before 8.0.22, and 7.4 before 7.4.26 does not use the appropriate privileges for the (1) RESET ROLE and (2) RESET SESSION AUTHORIZATION operations, which allows remote authenticated users to gain privileges. NOTE: this is due to an incomplete fix for CVE-2007-6600.", "title": "Vulnerability description" }, { "category": "summary", "text": "postgresql: SQL privilege escalation, incomplete fix for CVE-2007-6600", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3230" }, { "category": "external", "summary": "RHBZ#522085", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=522085" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3230", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3230" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3230", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3230" } ], "release_date": "2009-09-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-09-23T21:38:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1461" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "postgresql: SQL privilege escalation, incomplete fix for CVE-2007-6600" }, { "cve": "CVE-2009-3231", "discovery_date": "2009-09-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "522084" } ], "notes": [ { "category": "description", "text": "The core server component in PostgreSQL 8.3 before 8.3.8 and 8.2 before 8.2.14, when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty password.", "title": "Vulnerability description" }, { "category": "summary", "text": "postgresql: LDAP authentication bypass when anonymous LDAP bind are allowed", "title": "Vulnerability summary" }, { "category": "other", "text": "Not vulnerable. This issue did not affect the versions of PostgreSQL as shipped with Red Hat Enterprise Linux 3, 4, or 5, as they do not support LDAP authentication, which was introduced upstream in version 8.2.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3231" }, { "category": "external", "summary": "RHBZ#522084", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=522084" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3231", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3231" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3231", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3231" } ], "release_date": "2009-09-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-09-23T21:38:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1461" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Stacks:httpd-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.src", "5Server-Stacks:httpd-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-debuginfo-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-devel-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.i386", "5Server-Stacks:httpd-manual-0:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.i386", "5Server-Stacks:mod_ssl-1:2.2.13-2.el5s2.x86_64", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.src", "5Server-Stacks:mysql-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-bench-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-cluster-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-debuginfo-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-devel-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-libs-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-server-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.i386", "5Server-Stacks:mysql-test-0:5.0.84-2.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.src", "5Server-Stacks:perl-DBD-MySQL-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.i386", "5Server-Stacks:perl-DBD-MySQL-debuginfo-0:4.012-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.src", "5Server-Stacks:perl-DBI-0:1.609-1.el5s2.x86_64", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.i386", "5Server-Stacks:perl-DBI-debuginfo-0:1.609-1.el5s2.x86_64", "5Server-Stacks:php-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-0:5.2.10-1.el5s2.src", "5Server-Stacks:php-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-bcmath-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-cli-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-common-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-dba-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-debuginfo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-devel-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-gd-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-imap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ldap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mbstring-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-mysql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-ncurses-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-odbc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pdo-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.noarch", "5Server-Stacks:php-pear-1:1.8.1-2.el5s2.src", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-pgsql-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-snmp-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-soap-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xml-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.i386", "5Server-Stacks:php-xmlrpc-0:5.2.10-1.el5s2.x86_64", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.src", "5Server-Stacks:postgresql-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-contrib-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-debuginfo-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-devel-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-docs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.src", "5Server-Stacks:postgresql-jdbc-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.i386", "5Server-Stacks:postgresql-jdbc-debuginfo-0:8.2.510-1jpp.el5s2.x86_64", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-libs-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plperl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-plpython-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-pltcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-python-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-server-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-tcl-0:8.2.14-1.el5s2.x86_64", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.i386", "5Server-Stacks:postgresql-test-0:8.2.14-1.el5s2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "postgresql: LDAP authentication bypass when anonymous LDAP bind are allowed" } ] }
ghsa-wwgr-xr73-wm3j
Vulnerability from github
Published
2022-05-02 00:10
Modified
2022-05-02 00:10
Details
Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document. NOTE: as of 20081031, the issue has not been fixed in MySQL 5.0.67.
{ "affected": [], "aliases": [ "CVE-2008-4456" ], "database_specific": { "cwe_ids": [ "CWE-79" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2008-10-06T23:25:00Z", "severity": "LOW" }, "details": "Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document. NOTE: as of 20081031, the issue has not been fixed in MySQL 5.0.67.", "id": "GHSA-wwgr-xr73-wm3j", "modified": "2022-05-02T00:10:10Z", "published": "2022-05-02T00:10:10Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-4456" }, { "type": "WEB", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45590" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11456" }, { "type": "WEB", "url": "http://bugs.mysql.com/bug.php?id=27884" }, { "type": "WEB", "url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html" }, { "type": "WEB", "url": "http://seclists.org/bugtraq/2008/Oct/0026.html" }, { "type": "WEB", "url": "http://secunia.com/advisories/32072" }, { "type": "WEB", "url": "http://secunia.com/advisories/34907" }, { "type": "WEB", "url": "http://secunia.com/advisories/36566" }, { "type": "WEB", "url": "http://secunia.com/advisories/38517" }, { "type": "WEB", "url": "http://securityreason.com/securityalert/4357" }, { "type": "WEB", "url": "http://support.apple.com/kb/HT4077" }, { "type": "WEB", "url": "http://ubuntu.com/usn/usn-897-1" }, { "type": "WEB", "url": "http://www.debian.org/security/2009/dsa-1783" }, { "type": "WEB", "url": "http://www.henlich.de/it-security/mysql-command-line-client-html-injection-vulnerability" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:094" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2009-1289.html" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2010-0110.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/archive/1/496842/100/0/threaded" }, { "type": "WEB", "url": "http://www.securityfocus.com/archive/1/496877/100/0/threaded" }, { "type": "WEB", "url": "http://www.securityfocus.com/archive/1/497158/100/0/threaded" }, { "type": "WEB", "url": "http://www.securityfocus.com/archive/1/497885/100/0/threaded" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/31486" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/USN-1397-1" } ], "schema_version": "1.4.0", "severity": [] }
gsd-2008-4456
Vulnerability from gsd
Modified
2023-12-13 01:23
Details
Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document. NOTE: as of 20081031, the issue has not been fixed in MySQL 5.0.67.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2008-4456", "description": "Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document. NOTE: as of 20081031, the issue has not been fixed in MySQL 5.0.67.", "id": "GSD-2008-4456", "references": [ "https://www.suse.com/security/cve/CVE-2008-4456.html", "https://www.debian.org/security/2009/dsa-1783", "https://access.redhat.com/errata/RHSA-2010:0110", "https://access.redhat.com/errata/RHSA-2009:1461", "https://access.redhat.com/errata/RHSA-2009:1289", "https://linux.oracle.com/cve/CVE-2008-4456.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2008-4456" ], "details": "Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document. NOTE: as of 20081031, the issue has not been fixed in MySQL 5.0.67.", "id": "GSD-2008-4456", "modified": "2023-12-13T01:23:00.016871Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-4456", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document. NOTE: as of 20081031, the issue has not been fixed in MySQL 5.0.67." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "20081029 Re: MySQL command-line client HTML injection vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/497885/100/0/threaded" }, { "name": "MDVSA-2009:094", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:094" }, { "name": "USN-1397-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-1397-1" }, { "name": "mysql-commandline-xss(45590)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45590" }, { "name": "oval:org.mitre.oval:def:11456", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11456" }, { "name": "20081008 Re: MySQL command-line client HTML injection vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/497158/100/0/threaded" }, { "name": "38517", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/38517" }, { "name": "DSA-1783", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2009/dsa-1783" }, { "name": "http://bugs.mysql.com/bug.php?id=27884", "refsource": "CONFIRM", "url": "http://bugs.mysql.com/bug.php?id=27884" }, { "name": "USN-897-1", "refsource": "UBUNTU", "url": "http://ubuntu.com/usn/usn-897-1" }, { "name": "RHSA-2009:1289", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2009-1289.html" }, { "name": "32072", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/32072" }, { "name": "APPLE-SA-2010-03-29-1", "refsource": "APPLE", "url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html" }, { "name": "20080930 MySQL command-line client HTML injection vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/496842/100/0/threaded" }, { "name": "http://support.apple.com/kb/HT4077", "refsource": "CONFIRM", "url": "http://support.apple.com/kb/HT4077" }, { "name": "RHSA-2010:0110", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2010-0110.html" }, { "name": "http://www.henlich.de/it-security/mysql-command-line-client-html-injection-vulnerability", "refsource": "MISC", "url": "http://www.henlich.de/it-security/mysql-command-line-client-html-injection-vulnerability" }, { "name": "20081004 RE: RE: MySQL command-line client HTML injection vulnerability", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2008/Oct/0026.html" }, { "name": "4357", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/4357" }, { "name": "34907", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/34907" }, { "name": "20080930 RE: MySQL command-line client HTML injection vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/496877/100/0/threaded" }, { "name": "36566", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/36566" }, { "name": "31486", "refsource": "BID", "url": "http://www.securityfocus.com/bid/31486" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.32:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.33:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.45:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.67:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.30:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.30:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.36:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.37:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.41:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.42:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.44:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.26:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.27:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.0.38:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-4456" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document. NOTE: as of 20081031, the issue has not been fixed in MySQL 5.0.67." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-79" } ] } ] }, "references": { "reference_data": [ { "name": "http://bugs.mysql.com/bug.php?id=27884", "refsource": "CONFIRM", "tags": [ "Exploit" ], "url": "http://bugs.mysql.com/bug.php?id=27884" }, { "name": "http://www.henlich.de/it-security/mysql-command-line-client-html-injection-vulnerability", "refsource": "MISC", "tags": [], "url": "http://www.henlich.de/it-security/mysql-command-line-client-html-injection-vulnerability" }, { "name": "32072", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/32072" }, { "name": "20081004 RE: RE: MySQL command-line client HTML injection vulnerability", "refsource": "BUGTRAQ", "tags": [], "url": "http://seclists.org/bugtraq/2008/Oct/0026.html" }, { "name": "4357", "refsource": "SREASON", "tags": [], "url": "http://securityreason.com/securityalert/4357" }, { "name": "MDVSA-2009:094", "refsource": "MANDRIVA", "tags": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:094" }, { "name": "34907", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/34907" }, { "name": "DSA-1783", "refsource": "DEBIAN", "tags": [], "url": "http://www.debian.org/security/2009/dsa-1783" }, { "name": "31486", "refsource": "BID", "tags": [], "url": "http://www.securityfocus.com/bid/31486" }, { "name": "RHSA-2010:0110", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2010-0110.html" }, { "name": "38517", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/38517" }, { "name": "USN-897-1", "refsource": "UBUNTU", "tags": [], "url": "http://ubuntu.com/usn/usn-897-1" }, { "name": "APPLE-SA-2010-03-29-1", "refsource": "APPLE", "tags": [], "url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html" }, { "name": "http://support.apple.com/kb/HT4077", "refsource": "CONFIRM", "tags": [], "url": "http://support.apple.com/kb/HT4077" }, { "name": "36566", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/36566" }, { "name": "RHSA-2009:1289", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2009-1289.html" }, { "name": "mysql-commandline-xss(45590)", "refsource": "XF", "tags": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45590" }, { "name": "oval:org.mitre.oval:def:11456", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11456" }, { "name": "USN-1397-1", "refsource": "UBUNTU", "tags": [], "url": "http://www.ubuntu.com/usn/USN-1397-1" }, { "name": "20081029 Re: MySQL command-line client HTML injection vulnerability", "refsource": "BUGTRAQ", "tags": [], "url": "http://www.securityfocus.com/archive/1/497885/100/0/threaded" }, { "name": "20081008 Re: MySQL command-line client HTML injection vulnerability", "refsource": "BUGTRAQ", "tags": [], "url": "http://www.securityfocus.com/archive/1/497158/100/0/threaded" }, { "name": "20080930 RE: MySQL command-line client HTML injection vulnerability", "refsource": "BUGTRAQ", "tags": [], "url": "http://www.securityfocus.com/archive/1/496877/100/0/threaded" }, { "name": "20080930 MySQL command-line client HTML injection vulnerability", "refsource": "BUGTRAQ", "tags": [], "url": "http://www.securityfocus.com/archive/1/496842/100/0/threaded" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "version": "2.0" }, "exploitabilityScore": 4.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "LOW", "userInteractionRequired": true } }, "lastModifiedDate": "2019-12-17T19:56Z", "publishedDate": "2008-10-06T23:25Z" } } }
Loading...
Loading...
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.