---------------------------------------------------------------------- BETA test the new Secunia Personal Software Inspector! The Secunia PSI detects installed software on your computer and categorises it as either Insecure, End-of-Life, or Up-To-Date. Effectively enabling you to focus your attention on software installations where more secure versions are available from the vendors. Download the free PSI BETA from the Secunia website: https://psi.secunia.com/ ---------------------------------------------------------------------- TITLE: Mandriva update for mysql SECUNIA ADVISORY ID: SA26710 VERIFY ADVISORY: http://secunia.com/advisories/26710/ CRITICAL: Less critical IMPACT: Privilege escalation, DoS WHERE: >From local network OPERATING SYSTEM: Mandriva Linux 2007 http://secunia.com/product/12165/ DESCRIPTION: Mandriva has issued an update for mysql. This fixes a vulnerability and a security issue, which can be exploited by malicious users to gain escalated privileges and by malicious people to cause a DoS (Denial of Service). For more information: SA25301 SOLUTION: Apply updated packages. -- Mandriva Linux 2007 -- 43b19d6908c3e084f1b404feb00c63de 2007.0/i586/MySQL-5.0.24a-2.2mdv2007.0.i586.rpm 8fe94c7be904870d65b469a4c81196df 2007.0/i586/MySQL-Max-5.0.24a-2.2mdv2007.0.i586.rpm 3660295e693c4ecdbffbe3ae0b5701d8 2007.0/i586/MySQL-bench-5.0.24a-2.2mdv2007.0.i586.rpm 7298bcc5c8ee75a6eab087b9917b78f1 2007.0/i586/MySQL-client-5.0.24a-2.2mdv2007.0.i586.rpm 15dd0f8dcf80b1c1019eac8a5a4a7052 2007.0/i586/MySQL-common-5.0.24a-2.2mdv2007.0.i586.rpm 37ca2f0c3a007ff1c8981c1b7125ce2d 2007.0/i586/MySQL-ndb-extra-5.0.24a-2.2mdv2007.0.i586.rpm 544ef62805a41bf9b403e25ce7c7c1f5 2007.0/i586/MySQL-ndb-management-5.0.24a-2.2mdv2007.0.i586.rpm d7c5b8b833c2619dfa20401d0da61918 2007.0/i586/MySQL-ndb-storage-5.0.24a-2.2mdv2007.0.i586.rpm e05d20b0c89d60be5b7be125e01bd7db 2007.0/i586/MySQL-ndb-tools-5.0.24a-2.2mdv2007.0.i586.rpm ee401b386f61cdd23ad8ac68500d57ef 2007.0/i586/libmysql15-5.0.24a-2.2mdv2007.0.i586.rpm 7eb3b28147bb62fce7226c2bcd2fc0cf 2007.0/i586/libmysql15-devel-5.0.24a-2.2mdv2007.0.i586.rpm f6173d4e62a6c52a124e8c7780796ed7 2007.0/i586/libmysql15-static-devel-5.0.24a-2.2mdv2007.0.i586.rpm ed790867b5e832f98e14a5831d3c3d9b 2007.0/SRPMS/MySQL-5.0.24a-2.2mdv2007.0.src.rpm -- Mandriva Linux 2007/X86_64 -- 9d8b485e4debe1a29d99cb4fc023ed17 2007.0/x86_64/MySQL-5.0.24a-2.2mdv2007.0.x86_64.rpm 8d0fd0cbc5449a5e9b9282209d8fb985 2007.0/x86_64/MySQL-Max-5.0.24a-2.2mdv2007.0.x86_64.rpm 05278a6de101b301da12d402636a5e33 2007.0/x86_64/MySQL-bench-5.0.24a-2.2mdv2007.0.x86_64.rpm 72efb5e7e697da6239e329370f972944 2007.0/x86_64/MySQL-client-5.0.24a-2.2mdv2007.0.x86_64.rpm e2dbbe658be425721686df1a7b55251f 2007.0/x86_64/MySQL-common-5.0.24a-2.2mdv2007.0.x86_64.rpm 1d89433b36d4e80c2f56278adf028270 2007.0/x86_64/MySQL-ndb-extra-5.0.24a-2.2mdv2007.0.x86_64.rpm a709ab263cd6ea0254fb151c00eb71c4 2007.0/x86_64/MySQL-ndb-management-5.0.24a-2.2mdv2007.0.x86_64.rpm 85d6c978f065853608a12d2a4bd9e04f 2007.0/x86_64/MySQL-ndb-storage-5.0.24a-2.2mdv2007.0.x86_64.rpm 88367e83123464a946c39aa115590142 2007.0/x86_64/MySQL-ndb-tools-5.0.24a-2.2mdv2007.0.x86_64.rpm c8f4fce474c9c5727499eacb1e31dbb1 2007.0/x86_64/lib64mysql15-5.0.24a-2.2mdv2007.0.x86_64.rpm 86230304c28d04713d68388a742c5888 2007.0/x86_64/lib64mysql15-devel-5.0.24a-2.2mdv2007.0.x86_64.rpm ff870649d1aab1fae3a80ff6398427a6 2007.0/x86_64/lib64mysql15-static-devel-5.0.24a-2.2mdv2007.0.x86_64.rpm ed790867b5e832f98e14a5831d3c3d9b 2007.0/SRPMS/MySQL-5.0.24a-2.2mdv2007.0.src.rpm ORIGINAL ADVISORY: http://www.mandriva.com/security/advisories?name=MDKSA-2007:177 OTHER REFERENCES: SA25301: http://secunia.com/advisories/25301/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------