Red Hat Bugzilla – Bug 241690
CVE-2007-2693 An error message discloses sensitive information to user without SELECT privilege
Last modified: 2007-08-30 10:51:04 EDT
Description of problem:
Certain ALTER TABLE SQL statements produce an error message that contains
information normally visible only to users with SELECT privilege.
Version-Release number of selected component (if applicable):
MySQL before 5.1.18
are you guys sure about this? fc6 and f7 seems to ship mysql 5.0.something. the
partitions (which are important for this issue) are, afaik, actually a new
feature of 5.1.x, which is beta/unstable - so only unstable mysql 5.1 versions
prior to 5.1.18 are affected and we dodged the bullet here?
Stefan: thanks for the notice. I don't even know what partitioned tables are,
so I trusted what CVE read, and it was "MySQL before 5.1.18".