Action not permitted
Modal body text goes here.
cve-2009-4030
Vulnerability from cvelistv5
Published
2009-11-30 17:00
Modified
2024-08-07 06:45
Severity ?
EPSS score ?
Summary
MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home directory, related to incorrect calculation of the mysql_unpacked_real_data_home value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4098 and CVE-2008-2079.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-07T06:45:51.096Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "38573", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/38573" }, { "name": "USN-1397-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "http://www.ubuntu.com/usn/USN-1397-1" }, { "name": "38517", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/38517" }, { "name": "RHSA-2010:0109", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2010-0109.html" }, { "name": "ADV-2010-1107", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2010/1107" }, { "name": "[oss-security] 20091124 Re: mysql-5.1.41", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://www.openwall.com/lists/oss-security/2009/11/24/6" }, { "name": "USN-897-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "http://ubuntu.com/usn/usn-897-1" }, { "name": "SUSE-SR:2010:011", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html" }, { "name": "APPLE-SA-2010-03-29-1", "tags": [ "vendor-advisory", "x_refsource_APPLE", "x_transferred" ], "url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html" }, { "name": "[oss-security] 20091119 mysql-5.1.41", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://www.openwall.com/lists/oss-security/2009/11/19/3" }, { "name": "[oss-security] 20091124 Re: mysql-5.1.41", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://marc.info/?l=oss-security\u0026m=125908080222685\u0026w=2" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-41.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://support.apple.com/kb/HT4077" }, { "name": "[oss-security] 20091124 Re: mysql-5.1.41", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://marc.info/?l=oss-security\u0026m=125908040022018\u0026w=2" }, { "name": "oval:org.mitre.oval:def:11116", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11116" }, { "name": "RHSA-2010:0110", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2010-0110.html" }, { "name": "SUSE-SR:2010:021", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://bugs.mysql.com/bug.php?id=32167" }, { "name": "[commits] 20091110 bzr commit into mysql-5.0-bugteam branch (joro:2845) Bug#32167", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://lists.mysql.com/commits/89940" }, { "name": "oval:org.mitre.oval:def:8156", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8156" }, { "name": "DSA-1997", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "http://www.debian.org/security/2010/dsa-1997" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2009-11-05T00:00:00", "descriptions": [ { "lang": "en", "value": "MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home directory, related to incorrect calculation of the mysql_unpacked_real_data_home value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4098 and CVE-2008-2079." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2018-01-04T18:57:02", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat" }, "references": [ { "name": "38573", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/38573" }, { "name": "USN-1397-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "http://www.ubuntu.com/usn/USN-1397-1" }, { "name": "38517", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/38517" }, { "name": "RHSA-2010:0109", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2010-0109.html" }, { "name": "ADV-2010-1107", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2010/1107" }, { "name": "[oss-security] 20091124 Re: mysql-5.1.41", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://www.openwall.com/lists/oss-security/2009/11/24/6" }, { "name": "USN-897-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "http://ubuntu.com/usn/usn-897-1" }, { "name": "SUSE-SR:2010:011", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html" }, { "name": "APPLE-SA-2010-03-29-1", "tags": [ "vendor-advisory", "x_refsource_APPLE" ], "url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html" }, { "name": "[oss-security] 20091119 mysql-5.1.41", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://www.openwall.com/lists/oss-security/2009/11/19/3" }, { "name": "[oss-security] 20091124 Re: mysql-5.1.41", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://marc.info/?l=oss-security\u0026m=125908080222685\u0026w=2" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-41.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://support.apple.com/kb/HT4077" }, { "name": "[oss-security] 20091124 Re: mysql-5.1.41", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://marc.info/?l=oss-security\u0026m=125908040022018\u0026w=2" }, { "name": "oval:org.mitre.oval:def:11116", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11116" }, { "name": "RHSA-2010:0110", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2010-0110.html" }, { "name": "SUSE-SR:2010:021", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://bugs.mysql.com/bug.php?id=32167" }, { "name": "[commits] 20091110 bzr commit into mysql-5.0-bugteam branch (joro:2845) Bug#32167", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://lists.mysql.com/commits/89940" }, { "name": "oval:org.mitre.oval:def:8156", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8156" }, { "name": "DSA-1997", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "http://www.debian.org/security/2010/dsa-1997" } ] } }, "cveMetadata": { "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2009-4030", "datePublished": "2009-11-30T17:00:00", "dateReserved": "2009-11-20T00:00:00", "dateUpdated": "2024-08-07T06:45:51.096Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2009-4030\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2009-11-30T17:30:00.360\",\"lastModified\":\"2023-11-07T02:04:41.513\",\"vulnStatus\":\"Modified\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home directory, related to incorrect calculation of the mysql_unpacked_real_data_home value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4098 and CVE-2008-2079.\"},{\"lang\":\"es\",\"value\":\"MySQL v5.1.x anteriores a v5.1.41 permite a usuarios locales evitar ciertas comprobaciones de privilegios invocando CREATE TABLE en una tabla MyISAM con los argumentos (1) DATA DIRECTORY o (2) INDEX DIRECTORY modificados que estan originariamente asociados con pathnames (rutas) sin symlinks, y que pueden apuntar a tables creadas en un futuro en el cual un pathname (ruta) es modificado para contener un symlink a un subdirectorio del directorio home de datos de MySQL. Vulnerabilidad relacionada con una c\u00e1lculo incorrecto del valor mysql_unpacked_real_data_home value. NOTA: esta vulnerabilidad existe debido a una soluci\u00f3n incompleta al CVE-2008-4098 y CVE-2008-2079.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:N/C:P/I:P/A:P\",\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\",\"baseScore\":4.4},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.4,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-59\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"35BED939-3366-4CBF-B6BF-29C0C42E97F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.1.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7D0F7A49-62A2-4201-B6F3-8DB9902A4480\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mysql:mysql:5.1.32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2BFBC7B-5C23-4CDB-AE4F-721378C36B07\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F58612F4-1CAC-4BFC-A9B2-3D4025F428FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"73F49A1D-BCA3-4772-8AB3-621CCC997B3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F719DD8E-8379-43C3-97F9-DE350E457F7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"342BB65B-1358-441C-B59A-1756BCC6414A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8589B1E7-0D6D-44B4-A36E-8225C5D15828\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"88FEEE64-899F-4F55-B829-641706E29E32\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D8597F56-BB14-480C-91CD-CAB96A9DDD8D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F4C5C88-95A7-4DDA-BC2F-CAFA47B0D67A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5EB2323C-EFE2-407A-9AE9-8717FA9F8625\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6341F695-6034-4CC1-9485-ACD3A0E1A079\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1DF5F19-ECD9-457F-89C6-6F0271CF4766\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"446DB5E9-EF4C-4A53-911E-91A802AECA5D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5829BE6A-BC58-482B-9DA1-04FDD413A7A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C85D20DF-702B-4F0B-922D-782474A4B663\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"73A09785-3CA4-4797-A836-A958DCDC322F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4DE3D79-0966-4E14-9288-7C269A2CEEC3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"564F6A24-BEB3-4420-A633-8AD54C292436\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"047FBCCD-DE7C-41FA-80A3-AD695C643C7A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"687CC501-4CB2-4295-86F6-A5E45DEC2D0D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"822A718D-AD9D-4AB9-802F-5F5C6309D809\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA2D4002-FD96-462D-BA55-4624170CAA4C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A40FE1C-6EB0-4C75-867E-B1F8408E5A0A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql:5.1.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"31B9607A-1E58-4471-BEDE-03484A1E9739\"}]}]}],\"references\":[{\"url\":\"http://bugs.mysql.com/bug.php?id=32167\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://dev.mysql.com/doc/refman/5.1/en/news-5-1-41.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.mysql.com/commits/89940\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://marc.info/?l=oss-security\u0026m=125908040022018\u0026w=2\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://marc.info/?l=oss-security\u0026m=125908080222685\u0026w=2\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/38517\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/38573\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://support.apple.com/kb/HT4077\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://ubuntu.com/usn/usn-897-1\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.debian.org/security/2010/dsa-1997\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2009/11/19/3\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2009/11/24/6\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2010-0109.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2010-0110.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.ubuntu.com/usn/USN-1397-1\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2010/1107\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11116\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8156\",\"source\":\"secalert@redhat.com\"}]}}" } }
rhsa-2010_0109
Vulnerability from csaf_redhat
Published
2010-02-16 16:05
Modified
2024-11-05 17:13
Summary
Red Hat Security Advisory: mysql security update
Notes
Topic
Updated mysql packages that fix multiple security issues are now available
for Red Hat Enterprise Linux 5.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Details
MySQL is a multi-user, multi-threaded SQL database server. It consists of
the MySQL server daemon (mysqld) and many client programs and libraries.
It was discovered that the MySQL client ignored certain SSL certificate
verification errors when connecting to servers. A man-in-the-middle
attacker could use this flaw to trick MySQL clients into connecting to a
spoofed MySQL server. (CVE-2009-4028)
Note: This fix may uncover previously hidden SSL configuration issues, such
as incorrect CA certificates being used by clients or expired server
certificates. This update should be carefully tested in deployments where
SSL connections are used.
A flaw was found in the way MySQL handled SELECT statements with subqueries
in the WHERE clause, that assigned results to a user variable. A remote,
authenticated attacker could use this flaw to crash the MySQL server daemon
(mysqld). This issue only caused a temporary denial of service, as the
MySQL daemon was automatically restarted after the crash. (CVE-2009-4019)
When the "datadir" option was configured with a relative path, MySQL did
not properly check paths used as arguments for the DATA DIRECTORY and INDEX
DIRECTORY directives. An authenticated attacker could use this flaw to
bypass the restriction preventing the use of subdirectories of the MySQL
data directory being used as DATA DIRECTORY and INDEX DIRECTORY paths.
(CVE-2009-4030)
Note: Due to the security risks and previous security issues related to the
use of the DATA DIRECTORY and INDEX DIRECTORY directives, users not
depending on this feature should consider disabling it by adding
"symbolic-links=0" to the "[mysqld]" section of the "my.cnf" configuration
file. In this update, an example of such a configuration was added to the
default "my.cnf" file.
All MySQL users are advised to upgrade to these updated packages, which
contain backported patches to resolve these issues. After installing this
update, the MySQL server daemon (mysqld) will be restarted automatically.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated mysql packages that fix multiple security issues are now available\nfor Red Hat Enterprise Linux 5.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "MySQL is a multi-user, multi-threaded SQL database server. It consists of\nthe MySQL server daemon (mysqld) and many client programs and libraries.\n\nIt was discovered that the MySQL client ignored certain SSL certificate\nverification errors when connecting to servers. A man-in-the-middle\nattacker could use this flaw to trick MySQL clients into connecting to a\nspoofed MySQL server. (CVE-2009-4028)\n\nNote: This fix may uncover previously hidden SSL configuration issues, such\nas incorrect CA certificates being used by clients or expired server\ncertificates. This update should be carefully tested in deployments where\nSSL connections are used.\n\nA flaw was found in the way MySQL handled SELECT statements with subqueries\nin the WHERE clause, that assigned results to a user variable. A remote,\nauthenticated attacker could use this flaw to crash the MySQL server daemon\n(mysqld). This issue only caused a temporary denial of service, as the\nMySQL daemon was automatically restarted after the crash. (CVE-2009-4019)\n\nWhen the \"datadir\" option was configured with a relative path, MySQL did\nnot properly check paths used as arguments for the DATA DIRECTORY and INDEX\nDIRECTORY directives. An authenticated attacker could use this flaw to\nbypass the restriction preventing the use of subdirectories of the MySQL\ndata directory being used as DATA DIRECTORY and INDEX DIRECTORY paths.\n(CVE-2009-4030)\n\nNote: Due to the security risks and previous security issues related to the\nuse of the DATA DIRECTORY and INDEX DIRECTORY directives, users not\ndepending on this feature should consider disabling it by adding\n\"symbolic-links=0\" to the \"[mysqld]\" section of the \"my.cnf\" configuration\nfile. In this update, an example of such a configuration was added to the\ndefault \"my.cnf\" file.\n\nAll MySQL users are advised to upgrade to these updated packages, which\ncontain backported patches to resolve these issues. After installing this\nupdate, the MySQL server daemon (mysqld) will be restarted automatically.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2010:0109", "url": "https://access.redhat.com/errata/RHSA-2010:0109" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "http://dev.mysql.com/doc/refman/5.0/en/symbolic-links-to-tables.html", "url": "http://dev.mysql.com/doc/refman/5.0/en/symbolic-links-to-tables.html" }, { "category": "external", "summary": "540906", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=540906" }, { "category": "external", "summary": "541233", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=541233" }, { "category": "external", "summary": "543653", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=543653" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0109.json" } ], "title": "Red Hat Security Advisory: mysql security update", "tracking": { "current_release_date": "2024-11-05T17:13:42+00:00", "generator": { "date": "2024-11-05T17:13:42+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2010:0109", "initial_release_date": "2010-02-16T16:05:00+00:00", "revision_history": [ { "date": "2010-02-16T16:05:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2010-02-16T11:05:33+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T17:13:42+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client_workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "product": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "product_id": "mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.77-4.el5_4.2?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.77-4.el5_4.2.x86_64", "product": { "name": "mysql-server-0:5.0.77-4.el5_4.2.x86_64", "product_id": "mysql-server-0:5.0.77-4.el5_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.77-4.el5_4.2?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.77-4.el5_4.2.x86_64", "product": { "name": "mysql-test-0:5.0.77-4.el5_4.2.x86_64", "product_id": "mysql-test-0:5.0.77-4.el5_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.77-4.el5_4.2?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "product": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "product_id": "mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.77-4.el5_4.2?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "product": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "product_id": "mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.77-4.el5_4.2?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-0:5.0.77-4.el5_4.2.x86_64", "product": { "name": "mysql-0:5.0.77-4.el5_4.2.x86_64", "product_id": "mysql-0:5.0.77-4.el5_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.77-4.el5_4.2?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "mysql-devel-0:5.0.77-4.el5_4.2.i386", "product": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.i386", "product_id": "mysql-devel-0:5.0.77-4.el5_4.2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.77-4.el5_4.2?arch=i386" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "product": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "product_id": "mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.77-4.el5_4.2?arch=i386" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.77-4.el5_4.2.i386", "product": { "name": "mysql-server-0:5.0.77-4.el5_4.2.i386", "product_id": "mysql-server-0:5.0.77-4.el5_4.2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.77-4.el5_4.2?arch=i386" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.77-4.el5_4.2.i386", "product": { "name": "mysql-test-0:5.0.77-4.el5_4.2.i386", "product_id": "mysql-test-0:5.0.77-4.el5_4.2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.77-4.el5_4.2?arch=i386" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.77-4.el5_4.2.i386", "product": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.i386", "product_id": "mysql-bench-0:5.0.77-4.el5_4.2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.77-4.el5_4.2?arch=i386" } } }, { "category": "product_version", "name": "mysql-0:5.0.77-4.el5_4.2.i386", "product": { "name": "mysql-0:5.0.77-4.el5_4.2.i386", "product_id": "mysql-0:5.0.77-4.el5_4.2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.77-4.el5_4.2?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "mysql-0:5.0.77-4.el5_4.2.src", "product": { "name": "mysql-0:5.0.77-4.el5_4.2.src", "product_id": "mysql-0:5.0.77-4.el5_4.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.77-4.el5_4.2?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "mysql-devel-0:5.0.77-4.el5_4.2.ia64", "product": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.ia64", "product_id": "mysql-devel-0:5.0.77-4.el5_4.2.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.77-4.el5_4.2?arch=ia64" } } }, { "category": "product_version", "name": "mysql-0:5.0.77-4.el5_4.2.ia64", "product": { "name": "mysql-0:5.0.77-4.el5_4.2.ia64", "product_id": "mysql-0:5.0.77-4.el5_4.2.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.77-4.el5_4.2?arch=ia64" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.77-4.el5_4.2.ia64", "product": { "name": "mysql-server-0:5.0.77-4.el5_4.2.ia64", "product_id": "mysql-server-0:5.0.77-4.el5_4.2.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.77-4.el5_4.2?arch=ia64" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.77-4.el5_4.2.ia64", "product": { "name": "mysql-test-0:5.0.77-4.el5_4.2.ia64", "product_id": "mysql-test-0:5.0.77-4.el5_4.2.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.77-4.el5_4.2?arch=ia64" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "product": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "product_id": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.77-4.el5_4.2?arch=ia64" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.77-4.el5_4.2.ia64", "product": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.ia64", "product_id": "mysql-bench-0:5.0.77-4.el5_4.2.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.77-4.el5_4.2?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "product": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "product_id": "mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.77-4.el5_4.2?arch=ppc64" } } }, { "category": "product_version", "name": "mysql-0:5.0.77-4.el5_4.2.ppc64", "product": { "name": "mysql-0:5.0.77-4.el5_4.2.ppc64", "product_id": "mysql-0:5.0.77-4.el5_4.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.77-4.el5_4.2?arch=ppc64" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.77-4.el5_4.2.ppc64", "product": { "name": "mysql-server-0:5.0.77-4.el5_4.2.ppc64", "product_id": "mysql-server-0:5.0.77-4.el5_4.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.77-4.el5_4.2?arch=ppc64" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "product": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "product_id": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.77-4.el5_4.2?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "mysql-devel-0:5.0.77-4.el5_4.2.ppc", "product": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.ppc", "product_id": "mysql-devel-0:5.0.77-4.el5_4.2.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.77-4.el5_4.2?arch=ppc" } } }, { "category": "product_version", "name": "mysql-0:5.0.77-4.el5_4.2.ppc", "product": { "name": "mysql-0:5.0.77-4.el5_4.2.ppc", "product_id": "mysql-0:5.0.77-4.el5_4.2.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.77-4.el5_4.2?arch=ppc" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.77-4.el5_4.2.ppc", "product": { "name": "mysql-server-0:5.0.77-4.el5_4.2.ppc", "product_id": "mysql-server-0:5.0.77-4.el5_4.2.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.77-4.el5_4.2?arch=ppc" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.77-4.el5_4.2.ppc", "product": { "name": "mysql-test-0:5.0.77-4.el5_4.2.ppc", "product_id": "mysql-test-0:5.0.77-4.el5_4.2.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.77-4.el5_4.2?arch=ppc" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "product": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "product_id": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.77-4.el5_4.2?arch=ppc" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.77-4.el5_4.2.ppc", "product": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.ppc", "product_id": "mysql-bench-0:5.0.77-4.el5_4.2.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.77-4.el5_4.2?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "mysql-devel-0:5.0.77-4.el5_4.2.s390x", "product": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.s390x", "product_id": "mysql-devel-0:5.0.77-4.el5_4.2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.77-4.el5_4.2?arch=s390x" } } }, { "category": "product_version", "name": "mysql-0:5.0.77-4.el5_4.2.s390x", "product": { "name": "mysql-0:5.0.77-4.el5_4.2.s390x", "product_id": "mysql-0:5.0.77-4.el5_4.2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.77-4.el5_4.2?arch=s390x" } } }, { "category": "product_version", "name": "mysql-server-0:5.0.77-4.el5_4.2.s390x", "product": { "name": "mysql-server-0:5.0.77-4.el5_4.2.s390x", "product_id": "mysql-server-0:5.0.77-4.el5_4.2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@5.0.77-4.el5_4.2?arch=s390x" } } }, { "category": "product_version", "name": "mysql-test-0:5.0.77-4.el5_4.2.s390x", "product": { "name": "mysql-test-0:5.0.77-4.el5_4.2.s390x", "product_id": "mysql-test-0:5.0.77-4.el5_4.2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-test@5.0.77-4.el5_4.2?arch=s390x" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "product": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "product_id": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.77-4.el5_4.2?arch=s390x" } } }, { "category": "product_version", "name": "mysql-bench-0:5.0.77-4.el5_4.2.s390x", "product": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.s390x", "product_id": "mysql-bench-0:5.0.77-4.el5_4.2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@5.0.77-4.el5_4.2?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "mysql-devel-0:5.0.77-4.el5_4.2.s390", "product": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.s390", "product_id": "mysql-devel-0:5.0.77-4.el5_4.2.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@5.0.77-4.el5_4.2?arch=s390" } } }, { "category": "product_version", "name": "mysql-0:5.0.77-4.el5_4.2.s390", "product": { "name": "mysql-0:5.0.77-4.el5_4.2.s390", "product_id": "mysql-0:5.0.77-4.el5_4.2.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@5.0.77-4.el5_4.2?arch=s390" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "product": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "product_id": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@5.0.77-4.el5_4.2?arch=s390" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc64" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.src as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.src" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.src", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-bench-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-bench-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-bench-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-bench-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc64" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc64" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-test-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-test-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-test-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-test-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-test-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.77-4.el5_4.2.ppc64" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.77-4.el5_4.2.s390" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.77-4.el5_4.2.src" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.src", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-bench-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-bench-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-bench-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-bench-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-bench-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-bench-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-bench-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc64" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-devel-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc64" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-server-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-test-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-test-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-test-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-test-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-test-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-test-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-test-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-test-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:mysql-test-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-test-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.77-4.el5_4.2.ppc64" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.77-4.el5_4.2.s390" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.77-4.el5_4.2.src" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.src", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-bench-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-bench-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-bench-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-bench-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-bench-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-bench-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-bench-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc64" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-devel-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc64" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-server-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-server-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-4.el5_4.2.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-test-0:5.0.77-4.el5_4.2.i386" }, "product_reference": "mysql-test-0:5.0.77-4.el5_4.2.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-4.el5_4.2.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-test-0:5.0.77-4.el5_4.2.ia64" }, "product_reference": "mysql-test-0:5.0.77-4.el5_4.2.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-4.el5_4.2.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-test-0:5.0.77-4.el5_4.2.ppc" }, "product_reference": "mysql-test-0:5.0.77-4.el5_4.2.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-4.el5_4.2.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-test-0:5.0.77-4.el5_4.2.s390x" }, "product_reference": "mysql-test-0:5.0.77-4.el5_4.2.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-test-0:5.0.77-4.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:mysql-test-0:5.0.77-4.el5_4.2.x86_64" }, "product_reference": "mysql-test-0:5.0.77-4.el5_4.2.x86_64", "relates_to_product_reference": "5Server" } ] }, "vulnerabilities": [ { "cve": "CVE-2009-4019", "discovery_date": "2009-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "540906" } ], "notes": [ { "category": "description", "text": "mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not (1) properly handle errors during execution of certain SELECT statements with subqueries, and does not (2) preserve certain null_value flags during execution of statements that use the GeomFromWKB function, which allows remote authenticated users to cause a denial of service (daemon crash) via a crafted statement.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: DoS (crash) when comparing GIS items from subquery and when handling subqueires in WHERE and assigning a SELECT result to a @variable", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.src", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-0:5.0.77-4.el5_4.2.src", "5Client:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-0:5.0.77-4.el5_4.2.src", "5Server:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-test-0:5.0.77-4.el5_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-4019" }, { "category": "external", "summary": "RHBZ#540906", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=540906" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-4019", "url": "https://www.cve.org/CVERecord?id=CVE-2009-4019" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-4019", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4019" } ], "release_date": "2009-11-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-02-16T16:05:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.src", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-0:5.0.77-4.el5_4.2.src", "5Client:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-0:5.0.77-4.el5_4.2.src", "5Server:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-test-0:5.0.77-4.el5_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0109" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 2.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:S/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.src", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-0:5.0.77-4.el5_4.2.src", "5Client:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-0:5.0.77-4.el5_4.2.src", "5Server:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-test-0:5.0.77-4.el5_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "mysql: DoS (crash) when comparing GIS items from subquery and when handling subqueires in WHERE and assigning a SELECT result to a @variable" }, { "cve": "CVE-2009-4028", "discovery_date": "2009-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "541233" } ], "notes": [ { "category": "description", "text": "The vio_verify_callback function in viosslfactories.c in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41, when OpenSSL is used, accepts a value of zero for the depth of X.509 certificates, which allows man-in-the-middle attackers to spoof arbitrary SSL-based MySQL servers via a crafted certificate, as demonstrated by a certificate presented by a server linked against the yaSSL library.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: client SSL certificate verification flaw", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.src", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-0:5.0.77-4.el5_4.2.src", "5Client:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-0:5.0.77-4.el5_4.2.src", "5Server:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-test-0:5.0.77-4.el5_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-4028" }, { "category": "external", "summary": "RHBZ#541233", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=541233" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-4028", "url": "https://www.cve.org/CVERecord?id=CVE-2009-4028" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-4028", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4028" } ], "release_date": "2009-11-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-02-16T16:05:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.src", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-0:5.0.77-4.el5_4.2.src", "5Client:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-0:5.0.77-4.el5_4.2.src", "5Server:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-test-0:5.0.77-4.el5_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0109" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.9, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:A/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.src", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-0:5.0.77-4.el5_4.2.src", "5Client:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-0:5.0.77-4.el5_4.2.src", "5Server:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-test-0:5.0.77-4.el5_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "mysql: client SSL certificate verification flaw" }, { "cve": "CVE-2009-4030", "discovery_date": "2009-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "543653" } ], "notes": [ { "category": "description", "text": "MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home directory, related to incorrect calculation of the mysql_unpacked_real_data_home value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4098 and CVE-2008-2079.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: Incomplete fix for CVE-2008-2079 / CVE-2008-4098", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.src", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-0:5.0.77-4.el5_4.2.src", "5Client:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-0:5.0.77-4.el5_4.2.src", "5Server:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-test-0:5.0.77-4.el5_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-4030" }, { "category": "external", "summary": "RHBZ#543653", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=543653" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-4030", "url": "https://www.cve.org/CVERecord?id=CVE-2009-4030" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-4030", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4030" } ], "release_date": "2009-11-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-02-16T16:05:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.src", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-0:5.0.77-4.el5_4.2.src", "5Client:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-0:5.0.77-4.el5_4.2.src", "5Server:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-test-0:5.0.77-4.el5_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0109" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 2.4, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:H/Au:S/C:N/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.src", "5Client-Workstation:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client-Workstation:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-0:5.0.77-4.el5_4.2.src", "5Client:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Client:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Client:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Client:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Client:mysql-test-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-0:5.0.77-4.el5_4.2.src", "5Server:mysql-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-bench-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-debuginfo-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-devel-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-server-0:5.0.77-4.el5_4.2.ppc64", "5Server:mysql-server-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-server-0:5.0.77-4.el5_4.2.x86_64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.i386", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ia64", "5Server:mysql-test-0:5.0.77-4.el5_4.2.ppc", "5Server:mysql-test-0:5.0.77-4.el5_4.2.s390x", "5Server:mysql-test-0:5.0.77-4.el5_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "mysql: Incomplete fix for CVE-2008-2079 / CVE-2008-4098" } ] }
rhsa-2010_0110
Vulnerability from csaf_redhat
Published
2010-02-16 16:20
Modified
2024-11-05 17:13
Summary
Red Hat Security Advisory: mysql security update
Notes
Topic
Updated mysql packages that fix several security issues are now available
for Red Hat Enterprise Linux 4.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Details
MySQL is a multi-user, multi-threaded SQL database server. It consists of
the MySQL server daemon (mysqld) and many client programs and libraries.
Multiple flaws were discovered in the way MySQL handled symbolic links to
tables created using the DATA DIRECTORY and INDEX DIRECTORY directives in
CREATE TABLE statements. An attacker with CREATE and DROP table privileges
and shell access to the database server could use these flaws to escalate
their database privileges, or gain access to tables created by other
database users. (CVE-2008-4098, CVE-2009-4030)
Note: Due to the security risks and previous security issues related to the
use of the DATA DIRECTORY and INDEX DIRECTORY directives, users not
depending on this feature should consider disabling it by adding
"symbolic-links=0" to the "[mysqld]" section of the "my.cnf" configuration
file. In this update, an example of such a configuration was added to the
default "my.cnf" file.
An insufficient HTML entities quoting flaw was found in the mysql command
line client's HTML output mode. If an attacker was able to inject arbitrary
HTML tags into data stored in a MySQL database, which was later retrieved
using the mysql command line client and its HTML output mode, they could
perform a cross-site scripting (XSS) attack against victims viewing the
HTML output in a web browser. (CVE-2008-4456)
Multiple format string flaws were found in the way the MySQL server logged
user commands when creating and deleting databases. A remote, authenticated
attacker with permissions to CREATE and DROP databases could use these
flaws to formulate a specially-crafted SQL command that would cause a
temporary denial of service (open connections to mysqld are terminated).
(CVE-2009-2446)
Note: To exploit the CVE-2009-2446 flaws, the general query log (the mysqld
"--log" command line option or the "log" option in "my.cnf") must be
enabled. This logging is not enabled by default.
All MySQL users are advised to upgrade to these updated packages, which
contain backported patches to resolve these issues. After installing this
update, the MySQL server daemon (mysqld) will be restarted automatically.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated mysql packages that fix several security issues are now available\nfor Red Hat Enterprise Linux 4.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "MySQL is a multi-user, multi-threaded SQL database server. It consists of\nthe MySQL server daemon (mysqld) and many client programs and libraries.\n\nMultiple flaws were discovered in the way MySQL handled symbolic links to\ntables created using the DATA DIRECTORY and INDEX DIRECTORY directives in\nCREATE TABLE statements. An attacker with CREATE and DROP table privileges\nand shell access to the database server could use these flaws to escalate\ntheir database privileges, or gain access to tables created by other\ndatabase users. (CVE-2008-4098, CVE-2009-4030)\n\nNote: Due to the security risks and previous security issues related to the\nuse of the DATA DIRECTORY and INDEX DIRECTORY directives, users not\ndepending on this feature should consider disabling it by adding\n\"symbolic-links=0\" to the \"[mysqld]\" section of the \"my.cnf\" configuration\nfile. In this update, an example of such a configuration was added to the\ndefault \"my.cnf\" file.\n\nAn insufficient HTML entities quoting flaw was found in the mysql command\nline client\u0027s HTML output mode. If an attacker was able to inject arbitrary\nHTML tags into data stored in a MySQL database, which was later retrieved\nusing the mysql command line client and its HTML output mode, they could\nperform a cross-site scripting (XSS) attack against victims viewing the\nHTML output in a web browser. (CVE-2008-4456)\n\nMultiple format string flaws were found in the way the MySQL server logged\nuser commands when creating and deleting databases. A remote, authenticated\nattacker with permissions to CREATE and DROP databases could use these\nflaws to formulate a specially-crafted SQL command that would cause a\ntemporary denial of service (open connections to mysqld are terminated).\n(CVE-2009-2446)\n\nNote: To exploit the CVE-2009-2446 flaws, the general query log (the mysqld\n\"--log\" command line option or the \"log\" option in \"my.cnf\") must be\nenabled. This logging is not enabled by default.\n\nAll MySQL users are advised to upgrade to these updated packages, which\ncontain backported patches to resolve these issues. After installing this\nupdate, the MySQL server daemon (mysqld) will be restarted automatically.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2010:0110", "url": "https://access.redhat.com/errata/RHSA-2010:0110" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "http://dev.mysql.com/doc/refman/4.1/en/symbolic-links-to-tables.html", "url": "http://dev.mysql.com/doc/refman/4.1/en/symbolic-links-to-tables.html" }, { "category": "external", "summary": "454077", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=454077" }, { "category": "external", "summary": "466518", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=466518" }, { "category": "external", "summary": "511020", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=511020" }, { "category": "external", "summary": "543653", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=543653" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0110.json" } ], "title": "Red Hat Security Advisory: mysql security update", "tracking": { "current_release_date": "2024-11-05T17:13:47+00:00", "generator": { "date": "2024-11-05T17:13:47+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2010:0110", "initial_release_date": "2010-02-16T16:20:00+00:00", "revision_history": [ { "date": "2010-02-16T16:20:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2010-02-16T11:27:21+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T17:13:47+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AS version 4", "product": { "name": "Red Hat Enterprise Linux AS version 4", "product_id": "4AS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::as" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop version 4", "product": { "name": "Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::desktop" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 4", "product": { "name": "Red Hat Enterprise Linux ES version 4", "product_id": "4ES", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 4", "product": { "name": "Red Hat Enterprise Linux WS version 4", "product_id": "4WS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "mysql-bench-0:4.1.22-2.el4_8.3.ia64", "product": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ia64", "product_id": "mysql-bench-0:4.1.22-2.el4_8.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@4.1.22-2.el4_8.3?arch=ia64" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "product": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "product_id": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@4.1.22-2.el4_8.3?arch=ia64" } } }, { "category": "product_version", "name": "mysql-server-0:4.1.22-2.el4_8.3.ia64", "product": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ia64", "product_id": "mysql-server-0:4.1.22-2.el4_8.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@4.1.22-2.el4_8.3?arch=ia64" } } }, { "category": "product_version", "name": "mysql-0:4.1.22-2.el4_8.3.ia64", "product": { "name": "mysql-0:4.1.22-2.el4_8.3.ia64", "product_id": "mysql-0:4.1.22-2.el4_8.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@4.1.22-2.el4_8.3?arch=ia64" } } }, { "category": "product_version", "name": "mysql-devel-0:4.1.22-2.el4_8.3.ia64", "product": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ia64", "product_id": "mysql-devel-0:4.1.22-2.el4_8.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@4.1.22-2.el4_8.3?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "product": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "product_id": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@4.1.22-2.el4_8.3?arch=i386" } } }, { "category": "product_version", "name": "mysql-0:4.1.22-2.el4_8.3.i386", "product": { "name": "mysql-0:4.1.22-2.el4_8.3.i386", "product_id": "mysql-0:4.1.22-2.el4_8.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@4.1.22-2.el4_8.3?arch=i386" } } }, { "category": "product_version", "name": "mysql-bench-0:4.1.22-2.el4_8.3.i386", "product": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.i386", "product_id": "mysql-bench-0:4.1.22-2.el4_8.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@4.1.22-2.el4_8.3?arch=i386" } } }, { "category": "product_version", "name": "mysql-server-0:4.1.22-2.el4_8.3.i386", "product": { "name": "mysql-server-0:4.1.22-2.el4_8.3.i386", "product_id": "mysql-server-0:4.1.22-2.el4_8.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@4.1.22-2.el4_8.3?arch=i386" } } }, { "category": "product_version", "name": "mysql-devel-0:4.1.22-2.el4_8.3.i386", "product": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.i386", "product_id": "mysql-devel-0:4.1.22-2.el4_8.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@4.1.22-2.el4_8.3?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "product": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "product_id": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@4.1.22-2.el4_8.3?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "product": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "product_id": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@4.1.22-2.el4_8.3?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-server-0:4.1.22-2.el4_8.3.x86_64", "product": { "name": "mysql-server-0:4.1.22-2.el4_8.3.x86_64", "product_id": "mysql-server-0:4.1.22-2.el4_8.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@4.1.22-2.el4_8.3?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-0:4.1.22-2.el4_8.3.x86_64", "product": { "name": "mysql-0:4.1.22-2.el4_8.3.x86_64", "product_id": "mysql-0:4.1.22-2.el4_8.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@4.1.22-2.el4_8.3?arch=x86_64" } } }, { "category": "product_version", "name": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "product": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "product_id": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@4.1.22-2.el4_8.3?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "mysql-0:4.1.22-2.el4_8.3.src", "product": { "name": "mysql-0:4.1.22-2.el4_8.3.src", "product_id": "mysql-0:4.1.22-2.el4_8.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@4.1.22-2.el4_8.3?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "mysql-bench-0:4.1.22-2.el4_8.3.ppc", "product": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ppc", "product_id": "mysql-bench-0:4.1.22-2.el4_8.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@4.1.22-2.el4_8.3?arch=ppc" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "product": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "product_id": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@4.1.22-2.el4_8.3?arch=ppc" } } }, { "category": "product_version", "name": "mysql-server-0:4.1.22-2.el4_8.3.ppc", "product": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ppc", "product_id": "mysql-server-0:4.1.22-2.el4_8.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@4.1.22-2.el4_8.3?arch=ppc" } } }, { "category": "product_version", "name": "mysql-0:4.1.22-2.el4_8.3.ppc", "product": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc", "product_id": "mysql-0:4.1.22-2.el4_8.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@4.1.22-2.el4_8.3?arch=ppc" } } }, { "category": "product_version", "name": "mysql-devel-0:4.1.22-2.el4_8.3.ppc", "product": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ppc", "product_id": "mysql-devel-0:4.1.22-2.el4_8.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@4.1.22-2.el4_8.3?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "product": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "product_id": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@4.1.22-2.el4_8.3?arch=ppc64" } } }, { "category": "product_version", "name": "mysql-0:4.1.22-2.el4_8.3.ppc64", "product": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc64", "product_id": "mysql-0:4.1.22-2.el4_8.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@4.1.22-2.el4_8.3?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390x", "product": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390x", "product_id": "mysql-bench-0:4.1.22-2.el4_8.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@4.1.22-2.el4_8.3?arch=s390x" } } }, { "category": "product_version", "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "product": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "product_id": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@4.1.22-2.el4_8.3?arch=s390x" } } }, { "category": "product_version", "name": "mysql-server-0:4.1.22-2.el4_8.3.s390x", "product": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390x", "product_id": "mysql-server-0:4.1.22-2.el4_8.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@4.1.22-2.el4_8.3?arch=s390x" } } }, { "category": "product_version", "name": "mysql-0:4.1.22-2.el4_8.3.s390x", "product": { "name": "mysql-0:4.1.22-2.el4_8.3.s390x", "product_id": "mysql-0:4.1.22-2.el4_8.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@4.1.22-2.el4_8.3?arch=s390x" } } }, { "category": "product_version", "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390x", "product": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390x", "product_id": "mysql-devel-0:4.1.22-2.el4_8.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@4.1.22-2.el4_8.3?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "product": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "product_id": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-debuginfo@4.1.22-2.el4_8.3?arch=s390" } } }, { "category": "product_version", "name": "mysql-0:4.1.22-2.el4_8.3.s390", "product": { "name": "mysql-0:4.1.22-2.el4_8.3.s390", "product_id": "mysql-0:4.1.22-2.el4_8.3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql@4.1.22-2.el4_8.3?arch=s390" } } }, { "category": "product_version", "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390", "product": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390", "product_id": "mysql-bench-0:4.1.22-2.el4_8.3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-bench@4.1.22-2.el4_8.3?arch=s390" } } }, { "category": "product_version", "name": "mysql-server-0:4.1.22-2.el4_8.3.s390", "product": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390", "product_id": "mysql-server-0:4.1.22-2.el4_8.3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-server@4.1.22-2.el4_8.3?arch=s390" } } }, { "category": "product_version", "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390", "product": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390", "product_id": "mysql-devel-0:4.1.22-2.el4_8.3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/mysql-devel@4.1.22-2.el4_8.3?arch=s390" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ppc64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.src as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-0:4.1.22-2.el4_8.3.src" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.src", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ppc64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.src as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-0:4.1.22-2.el4_8.3.src" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.src", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ppc64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.src as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-0:4.1.22-2.el4_8.3.src" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.src", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.ppc64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.src as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-0:4.1.22-2.el4_8.3.src" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.src", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "mysql-server-0:4.1.22-2.el4_8.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" }, "product_reference": "mysql-server-0:4.1.22-2.el4_8.3.x86_64", "relates_to_product_reference": "4WS" } ] }, "vulnerabilities": [ { "cve": "CVE-2008-4098", "discovery_date": "2008-07-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "454077" } ], "notes": [ { "category": "description", "text": "MySQL before 5.0.67 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL home data directory. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4097.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: incomplete upstream fix for CVE-2008-2079", "title": "Vulnerability summary" }, { "category": "other", "text": "In Red Hat Enterprise Linux 5, issue CVE-2008-2079 was fixed without introducing CVE-2008-4098 in RHSA-2009:1289.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2008-4098" }, { "category": "external", "summary": "RHBZ#454077", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=454077" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2008-4098", "url": "https://www.cve.org/CVERecord?id=CVE-2008-4098" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-4098", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-4098" } ], "release_date": "2008-07-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-02-16T16:20:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0110" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 3.2, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:S/C:P/I:P/A:N", "version": "2.0" }, "products": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "mysql: incomplete upstream fix for CVE-2008-2079" }, { "cve": "CVE-2008-4456", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2008-10-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "466518" } ], "notes": [ { "category": "description", "text": "Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be accessed by this client when composing an HTML document. NOTE: as of 20081031, the issue has not been fixed in MySQL 5.0.67.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: mysql command line client XSS flaw", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2008-4456" }, { "category": "external", "summary": "RHBZ#466518", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=466518" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2008-4456", "url": "https://www.cve.org/CVERecord?id=CVE-2008-4456" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-4456", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-4456" } ], "release_date": "2008-09-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-02-16T16:20:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0110" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 1.7, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:S/C:N/I:P/A:N", "version": "2.0" }, "products": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "mysql: mysql command line client XSS flaw" }, { "cve": "CVE-2009-2446", "discovery_date": "2009-07-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "511020" } ], "notes": [ { "category": "description", "text": "Multiple format string vulnerabilities in the dispatch_command function in libmysqld/sql_parse.cc in mysqld in MySQL 4.0.0 through 5.0.83 allow remote authenticated users to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in a database name in a (1) COM_CREATE_DB or (2) COM_DROP_DB request. NOTE: some of these details are obtained from third party information.", "title": "Vulnerability description" }, { "category": "summary", "text": "MySQL: Format string vulnerability by manipulation with database instances (crash)", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-2446\n\nThe Red Hat Product Security has rated this issue as having low security impact, future MySQL package updates may address this flaw for Red Hat Enterprise Linux 3 and Red Hat Application Stack 2.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-2446" }, { "category": "external", "summary": "RHBZ#511020", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=511020" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-2446", "url": "https://www.cve.org/CVERecord?id=CVE-2009-2446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-2446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2446" } ], "release_date": "2009-07-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-02-16T16:20:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0110" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 3.5, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:S/C:N/I:N/A:P", "version": "2.0" }, "products": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "MySQL: Format string vulnerability by manipulation with database instances (crash)" }, { "cve": "CVE-2009-4030", "discovery_date": "2009-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "543653" } ], "notes": [ { "category": "description", "text": "MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home directory, related to incorrect calculation of the mysql_unpacked_real_data_home value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4098 and CVE-2008-2079.", "title": "Vulnerability description" }, { "category": "summary", "text": "mysql: Incomplete fix for CVE-2008-2079 / CVE-2008-4098", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-4030" }, { "category": "external", "summary": "RHBZ#543653", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=543653" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-4030", "url": "https://www.cve.org/CVERecord?id=CVE-2009-4030" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-4030", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4030" } ], "release_date": "2009-11-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-02-16T16:20:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0110" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 2.4, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:H/Au:S/C:N/I:P/A:P", "version": "2.0" }, "products": [ "4AS:mysql-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-0:4.1.22-2.el4_8.3.src", "4AS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4AS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4AS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4AS:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-0:4.1.22-2.el4_8.3.src", "4Desktop:mysql-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.i386", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4Desktop:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-0:4.1.22-2.el4_8.3.src", "4ES:mysql-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.i386", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4ES:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390", "4ES:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4ES:mysql-server-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-0:4.1.22-2.el4_8.3.src", "4WS:mysql-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-bench-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.ppc64", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-debuginfo-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-devel-0:4.1.22-2.el4_8.3.x86_64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.i386", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ia64", "4WS:mysql-server-0:4.1.22-2.el4_8.3.ppc", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390", "4WS:mysql-server-0:4.1.22-2.el4_8.3.s390x", "4WS:mysql-server-0:4.1.22-2.el4_8.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "mysql: Incomplete fix for CVE-2008-2079 / CVE-2008-4098" } ] }
gsd-2009-4030
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home directory, related to incorrect calculation of the mysql_unpacked_real_data_home value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4098 and CVE-2008-2079.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2009-4030", "description": "MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home directory, related to incorrect calculation of the mysql_unpacked_real_data_home value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4098 and CVE-2008-2079.", "id": "GSD-2009-4030", "references": [ "https://www.suse.com/security/cve/CVE-2009-4030.html", "https://www.debian.org/security/2010/dsa-1997", "https://access.redhat.com/errata/RHSA-2010:0110", "https://access.redhat.com/errata/RHSA-2010:0109", "https://linux.oracle.com/cve/CVE-2009-4030.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2009-4030" ], "details": "MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home directory, related to incorrect calculation of the mysql_unpacked_real_data_home value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4098 and CVE-2008-2079.", "id": "GSD-2009-4030", "modified": "2023-12-13T01:19:45.004649Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2009-4030", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_affected": "=", "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home directory, related to incorrect calculation of the mysql_unpacked_real_data_home value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4098 and CVE-2008-2079." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html", "refsource": "MISC", "url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html" }, { "name": "http://support.apple.com/kb/HT4077", "refsource": "MISC", "url": "http://support.apple.com/kb/HT4077" }, { "name": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-41.html", "refsource": "MISC", "url": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-41.html" }, { "name": "http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html", "refsource": "MISC", "url": "http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html" }, { "name": "http://www.openwall.com/lists/oss-security/2009/11/19/3", "refsource": "MISC", "url": "http://www.openwall.com/lists/oss-security/2009/11/19/3" }, { "name": "http://www.redhat.com/support/errata/RHSA-2010-0109.html", "refsource": "MISC", "url": "http://www.redhat.com/support/errata/RHSA-2010-0109.html" }, { "name": "http://www.vupen.com/english/advisories/2010/1107", "refsource": "MISC", "url": "http://www.vupen.com/english/advisories/2010/1107" }, { "name": "http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html", "refsource": "MISC", "url": "http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html" }, { "name": "http://secunia.com/advisories/38517", "refsource": "MISC", "url": "http://secunia.com/advisories/38517" }, { "name": "http://secunia.com/advisories/38573", "refsource": "MISC", "url": "http://secunia.com/advisories/38573" }, { "name": "http://ubuntu.com/usn/usn-897-1", "refsource": "MISC", "url": "http://ubuntu.com/usn/usn-897-1" }, { "name": "http://www.debian.org/security/2010/dsa-1997", "refsource": "MISC", "url": "http://www.debian.org/security/2010/dsa-1997" }, { "name": "http://www.ubuntu.com/usn/USN-1397-1", "refsource": "MISC", "url": "http://www.ubuntu.com/usn/USN-1397-1" }, { "name": "http://bugs.mysql.com/bug.php?id=32167", "refsource": "MISC", "url": "http://bugs.mysql.com/bug.php?id=32167" }, { "name": "http://www.redhat.com/support/errata/RHSA-2010-0110.html", "refsource": "MISC", "url": "http://www.redhat.com/support/errata/RHSA-2010-0110.html" }, { "name": "http://lists.mysql.com/commits/89940", "refsource": "MISC", "url": "http://lists.mysql.com/commits/89940" }, { "name": "http://marc.info/?l=oss-security\u0026m=125908040022018\u0026w=2", "refsource": "MISC", "url": "http://marc.info/?l=oss-security\u0026m=125908040022018\u0026w=2" }, { "name": "http://marc.info/?l=oss-security\u0026m=125908080222685\u0026w=2", "refsource": "MISC", "url": "http://marc.info/?l=oss-security\u0026m=125908080222685\u0026w=2" }, { "name": "http://www.openwall.com/lists/oss-security/2009/11/24/6", "refsource": "MISC", "url": "http://www.openwall.com/lists/oss-security/2009/11/24/6" }, { "name": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11116", "refsource": "MISC", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11116" }, { "name": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8156", "refsource": "MISC", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8156" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.1.23:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.1.32:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mysql:mysql:5.1.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.19:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.20:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.21:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.22:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:mysql:5.1.30:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2009-4030" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home directory, related to incorrect calculation of the mysql_unpacked_real_data_home value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4098 and CVE-2008-2079." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-59" } ] } ] }, "references": { "reference_data": [ { "name": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-41.html", "refsource": "CONFIRM", "tags": [], "url": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-41.html" }, { "name": "[oss-security] 20091119 mysql-5.1.41", "refsource": "MLIST", "tags": [], "url": "http://www.openwall.com/lists/oss-security/2009/11/19/3" }, { "name": "http://bugs.mysql.com/bug.php?id=32167", "refsource": "CONFIRM", "tags": [], "url": "http://bugs.mysql.com/bug.php?id=32167" }, { "name": "[oss-security] 20091124 Re: mysql-5.1.41", "refsource": "MLIST", "tags": [], "url": "http://marc.info/?l=oss-security\u0026m=125908080222685\u0026w=2" }, { "name": "[oss-security] 20091124 Re: mysql-5.1.41", "refsource": "MLIST", "tags": [], "url": "http://www.openwall.com/lists/oss-security/2009/11/24/6" }, { "name": "[commits] 20091110 bzr commit into mysql-5.0-bugteam branch (joro:2845) Bug#32167", "refsource": "MLIST", "tags": [], "url": "http://lists.mysql.com/commits/89940" }, { "name": "[oss-security] 20091124 Re: mysql-5.1.41", "refsource": "MLIST", "tags": [], "url": "http://marc.info/?l=oss-security\u0026m=125908040022018\u0026w=2" }, { "name": "RHSA-2010:0110", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2010-0110.html" }, { "name": "RHSA-2010:0109", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2010-0109.html" }, { "name": "DSA-1997", "refsource": "DEBIAN", "tags": [], "url": "http://www.debian.org/security/2010/dsa-1997" }, { "name": "38573", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/38573" }, { "name": "38517", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/38517" }, { "name": "USN-897-1", "refsource": "UBUNTU", "tags": [], "url": "http://ubuntu.com/usn/usn-897-1" }, { "name": "APPLE-SA-2010-03-29-1", "refsource": "APPLE", "tags": [], "url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html" }, { "name": "http://support.apple.com/kb/HT4077", "refsource": "CONFIRM", "tags": [], "url": "http://support.apple.com/kb/HT4077" }, { "name": "SUSE-SR:2010:011", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html" }, { "name": "ADV-2010-1107", "refsource": "VUPEN", "tags": [], "url": "http://www.vupen.com/english/advisories/2010/1107" }, { "name": "SUSE-SR:2010:021", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html" }, { "name": "oval:org.mitre.oval:def:8156", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8156" }, { "name": "oval:org.mitre.oval:def:11116", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11116" }, { "name": "USN-1397-1", "refsource": "UBUNTU", "tags": [], "url": "http://www.ubuntu.com/usn/USN-1397-1" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "exploitabilityScore": 3.4, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false } }, "lastModifiedDate": "2023-02-13T02:20Z", "publishedDate": "2009-11-30T17:30Z" } } }
ghsa-q8q6-rcmj-g45q
Vulnerability from github
Published
2022-05-02 03:50
Modified
2022-05-02 03:50
Details
MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home directory, related to incorrect calculation of the mysql_unpacked_real_data_home value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4098 and CVE-2008-2079.
{ "affected": [], "aliases": [ "CVE-2009-4030" ], "database_specific": { "cwe_ids": [ "CWE-59" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2009-11-30T17:30:00Z", "severity": "MODERATE" }, "details": "MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL data home directory, related to incorrect calculation of the mysql_unpacked_real_data_home value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4098 and CVE-2008-2079.", "id": "GHSA-q8q6-rcmj-g45q", "modified": "2022-05-02T03:50:58Z", "published": "2022-05-02T03:50:58Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4030" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11116" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8156" }, { "type": "WEB", "url": "http://bugs.mysql.com/bug.php?id=32167" }, { "type": "WEB", "url": "http://dev.mysql.com/doc/refman/5.1/en/news-5-1-41.html" }, { "type": "WEB", "url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html" }, { "type": "WEB", "url": "http://lists.mysql.com/commits/89940" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html" }, { "type": "WEB", "url": "http://marc.info/?l=oss-security\u0026m=125908040022018\u0026w=2" }, { "type": "WEB", "url": "http://marc.info/?l=oss-security\u0026m=125908080222685\u0026w=2" }, { "type": "WEB", "url": "http://secunia.com/advisories/38517" }, { "type": "WEB", "url": "http://secunia.com/advisories/38573" }, { "type": "WEB", "url": "http://support.apple.com/kb/HT4077" }, { "type": "WEB", "url": "http://ubuntu.com/usn/usn-897-1" }, { "type": "WEB", "url": "http://www.debian.org/security/2010/dsa-1997" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2009/11/19/3" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2009/11/24/6" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2010-0109.html" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2010-0110.html" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/USN-1397-1" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2010/1107" } ], "schema_version": "1.4.0", "severity": [] }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.