Bug 119442
Summary: | CAN-2004-0381 mysqlbug temporary file vulnerability | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 3 | Reporter: | Mark J. Cox <mjc> |
Component: | mysql | Assignee: | Tom Lane <tgl> |
Status: | CLOSED ERRATA | QA Contact: | David Lawrence <dkl> |
Severity: | medium | Docs Contact: | |
Priority: | low | ||
Version: | 3.0 | CC: | hhorak, k.georgiou, redhat-bugzilla |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2004-10-20 19:41:28 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Mark J. Cox
2004-03-30 15:45:06 UTC
Mark, you only marked CAN-2004-0381 for this bug, but the vulnerability of CAN-2004-0388 is there, too. Both CANs should be fixed with the patch from attachment #101129 [details] *** Bug 125991 has been marked as a duplicate of this bug. *** *** Bug 125992 has been marked as a duplicate of this bug. *** Sorry Tom, for making that additional unnecessary work (for me and for you), but it seems so, that there are multiple/different views how a bug has to be marked in bugzilla for different distributions & versions, but okay...the onliest I would be happy, is to have those 2 CANs fixed at all 4 currently supported distributions/versions at all needed architectures (RHEL 2.1, 3 and FC 1, 2) ;-) Most of your colleagues assign for each affected distribution version a separate bug, so I followed this example - sorry again! Reopening bug 125991; we usually do keep RHEL and FC separate; but not split up the individual versions of RHEL/FC. Fix is in mysql-3.23.58-2.2, slated for RHEL3 U4, and also in 3.23.58-11 and beyond for FC3. An errata has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2004-569.html |