Oval Definition:oval:com.redhat.rhsa:def:20070152
Revision Date:2007-04-03Version:635
Title:RHSA-2007:0152: mysql security update (Moderate)
Description:MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon (mysqld) and many different client programs and libraries.

  • A flaw was found in the way MySQL handled case sensitive database names. A user with the ability to create databases could gain unauthorized access to other databases hosted by the MySQL server. (CVE-2006-4226)

    This flaw does not affect the version of MySQL distributed with Red Hat Enterprise Linux 2.1, 3, or 5.

    All users of the MySQL server are advised to upgrade to these updated packages, which contain a backported patch which fixes this issue.
  • Family:unixClass:patch
    Status:Reference(s):CVE-2006-4226
    RHSA-2007:0152
    RHSA-2007:0152-01
    RHSA-2007:0152-01
    Platform(s):Red Hat Enterprise Linux 4
    Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • mysql is earlier than 0:4.1.20-2.RHEL4.1
  • AND mysql is signed with Red Hat redhatrelease2 key
  • mysql-bench is earlier than 0:4.1.20-2.RHEL4.1
  • AND mysql-bench is signed with Red Hat redhatrelease2 key
  • mysql-devel is earlier than 0:4.1.20-2.RHEL4.1
  • AND mysql-devel is signed with Red Hat redhatrelease2 key
  • mysql-server is earlier than 0:4.1.20-2.RHEL4.1
  • AND mysql-server is signed with Red Hat redhatrelease2 key
  • BACK