Oval Definition:	oval:org.opensuse.security:def:20084098
Revision Date: 2017-09-27 Version: 1 Title: CVE-2008-4098 Description: MySQL before 5.0.67 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL home data directory. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4097. Family: unix Class: vulnerability Status: Reference(s): CVE-2008-4098 Platform(s): Novell Linux Desktop 9 for x86 Novell Linux Desktop 9 for x86_64 Novell Linux Desktop 9 SDK for x86 Novell Linux Desktop 9 SDK for x86_64 Open Enterprise Server openSUSE 10.3 openSUSE 11.0 SLES SDK 9 for IBM iSeries and IBM pSeries SLES SDK 9 for IBM S/390 and IBM zSeries SLES SDK 9 for IBM zSeries SLES SDK 9 for IPF SLES SDK 9 for x86 SLES SDK 9 for X86-64 SUSE Linux Enterprise SDK 10 SP2 Product(s): Definition Synopsis sles10-sp2-sdk is installed AND Package Information mysql-Max less than 5.0.26-12.22 OR mysql-bench less than 5.0.26-12.22 OR mysql-client less than 5.0.26-12.22 OR mysql-devel less than 5.0.26-12.22 OR mysql-shared-32bit less than 5.0.26-12.22 OR mysql-shared-64bit less than 5.0.26-12.22 OR mysql-shared-x86 less than 5.0.26-12.22 OR mysql-shared less than 5.0.26-12.22 OR mysql less than 5.0.26-12.22
BACK