Oval Definition:oval:org.opensuse.security:def:20102008
Revision Date:2015-11-16Version:1
Title:CVE-2010-2008
Description:
MySQL before 5.1.48 allows remote authenticated users with alter database privileges to cause a denial of service (server crash and database loss) via an ALTER DATABASE command with a #mysql50# string followed by a . (dot), .. (dot dot), ../ (dot dot slash) or similar sequence, and an UPGRADE DATA DIRECTORY NAME command, which causes MySQL to move certain directories to the server data directory.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2010-2008
Platform(s):openSUSE 11.2
Product(s):
Definition Synopsis
  • suse112 is installed
  • AND Package Information
  • libmysqlclient-devel less than 5.1.49-0.1.1
  • OR libmysqlclient16-32bit less than 5.1.49-0.1.1
  • OR libmysqlclient16 less than 5.1.49-0.1.1
  • OR libmysqlclient_r16-32bit less than 5.1.49-0.1.1
  • OR libmysqlclient_r16 less than 5.1.49-0.1.1
  • OR libmysqld-devel less than 5.1.49-0.1.1
  • OR mysql-bench less than 5.1.49-0.1.1
  • OR mysql-client less than 5.1.49-0.1.1
  • OR mysql-debug less than 5.1.49-0.1.1
  • OR mysql-ndb-extra less than 5.1.49-0.1.1
  • OR mysql-ndb-management less than 5.1.49-0.1.1
  • OR mysql-ndb-storage less than 5.1.49-0.1.1
  • OR mysql-ndb-tools less than 5.1.49-0.1.1
  • OR mysql-test less than 5.1.49-0.1.1
  • OR mysql-tools less than 5.1.49-0.1.1
  • OR mysql less than 5.1.49-0.1.1
    • BACK