---------------------------------------------------------------------- A new version (0.9.0.0 - Release Candidate 1) of the free Secunia PSI has been released. The new version includes many new and advanced features, which makes it even easier to stay patched. Download and test it today: https://psi.secunia.com/ Read more about this new version: https://psi.secunia.com/?page=changelog ---------------------------------------------------------------------- TITLE: Mandriva update for mysql SECUNIA ADVISORY ID: SA28637 VERIFY ADVISORY: http://secunia.com/advisories/28637/ CRITICAL: Less critical IMPACT: Privilege escalation, DoS WHERE: >From local network OPERATING SYSTEM: Mandriva Linux 2007 http://secunia.com/product/12165/ DESCRIPTION: Mandriva has issued an update for mysql. This fixes a security issue and a vulnerability, which can be exploited by malicious users to gain escalated privileges or cause a DoS (Denial of Service). For more information: SA25301 SA28063 SOLUTION: Apply updated packages. Mandriva Linux 2007 8308e15a835905cfb1db32eada26c883 2007.0/i586/libmysql-devel-5.0.45-8.1mdv2007.0.i586.rpm 497b43aa77224faa392c5141d48e138f 2007.0/i586/libmysql-static-devel-5.0.45-8.1mdv2007.0.i586.rpm d46c0aea4b3d4e3b57f6d58cd508af57 2007.0/i586/libmysql15-5.0.45-8.1mdv2007.0.i586.rpm 3278969388161ffed75c14e15dd9d4ad 2007.0/i586/mysql-5.0.45-8.1mdv2007.0.i586.rpm 72961088740e022b2db2c7546f361c67 2007.0/i586/mysql-bench-5.0.45-8.1mdv2007.0.i586.rpm 36c92157cda26ce4297628e66c079d7f 2007.0/i586/mysql-client-5.0.45-8.1mdv2007.0.i586.rpm 773b61b83357a3946395135431cd32db 2007.0/i586/mysql-common-5.0.45-8.1mdv2007.0.i586.rpm 21b2a793207115ccf7f36c054b50b9fe 2007.0/i586/mysql-max-5.0.45-8.1mdv2007.0.i586.rpm 1d3bd0dcb8e675674ddda288c28cb558 2007.0/i586/mysql-ndb-extra-5.0.45-8.1mdv2007.0.i586.rpm 3db8afbca3dd5827ffedc4e47c10f97e 2007.0/i586/mysql-ndb-management-5.0.45-8.1mdv2007.0.i586.rpm a6a279e76cca9cdf3ac5565179e80545 2007.0/i586/mysql-ndb-storage-5.0.45-8.1mdv2007.0.i586.rpm f8b9a30a32e247915b9858f3b7f63379 2007.0/i586/mysql-ndb-tools-5.0.45-8.1mdv2007.0.i586.rpm e64751b034f8560d5118b35e6a5092fb 2007.0/SRPMS/mysql-5.0.45-8.1mdv2007.0.src.rpm Mandriva Linux 2007/X86_64 cf40fcf35654f9c2c178f8536f718f72 2007.0/x86_64/lib64mysql-devel-5.0.45-8.1mdv2007.0.x86_64.rpm 75c959ef8c66d26b24b32a79e9cc28bd 2007.0/x86_64/lib64mysql-static-devel-5.0.45-8.1mdv2007.0.x86_64.rpm cdfe8b2ea0baec8d6574a13ddcb8e39b 2007.0/x86_64/lib64mysql15-5.0.45-8.1mdv2007.0.x86_64.rpm 7b55f3b2c08793911edb7aa0e1cc4b4d 2007.0/x86_64/mysql-5.0.45-8.1mdv2007.0.x86_64.rpm 6c8a12a0b9a17dc9ba2f91b69de366a3 2007.0/x86_64/mysql-bench-5.0.45-8.1mdv2007.0.x86_64.rpm cc3b0305b62d265bf4ea28de45c409a4 2007.0/x86_64/mysql-client-5.0.45-8.1mdv2007.0.x86_64.rpm 6eed047db759509c10eb349b6c2546df 2007.0/x86_64/mysql-common-5.0.45-8.1mdv2007.0.x86_64.rpm a4527d7bb167064a0028cf3f9b768dc5 2007.0/x86_64/mysql-max-5.0.45-8.1mdv2007.0.x86_64.rpm f06ce459897d0e0c93a301c2312a53e9 2007.0/x86_64/mysql-ndb-extra-5.0.45-8.1mdv2007.0.x86_64.rpm 937776dc1bad2a792d33184b92e9bb56 2007.0/x86_64/mysql-ndb-management-5.0.45-8.1mdv2007.0.x86_64.rpm df971f898499ec07b86d70ca40c12567 2007.0/x86_64/mysql-ndb-storage-5.0.45-8.1mdv2007.0.x86_64.rpm aa08021ec8da55ace45677a0c2df1d81 2007.0/x86_64/mysql-ndb-tools-5.0.45-8.1mdv2007.0.x86_64.rpm e64751b034f8560d5118b35e6a5092fb 2007.0/SRPMS/mysql-5.0.45-8.1mdv2007.0.src.rpm ORIGINAL ADVISORY: http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:028 OTHER REFERENCES: SA25301: http://secunia.com/advisories/25301/ SA28063: http://secunia.com/advisories/28063/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------