ELSA-2010-0110

ULN >
Oracle Linux Errata repository >
ELSA-2010-0110

ELSA-2010-0110 - mysql security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2010-02-16

Description

[4.1.22-2.el4.3]
- Add comment suggesting disabling symbolic links in /etc/my.cnf

[4.1.22-2.el4.2]
- Add fixes for CVE-2008-4098, CVE-2009-4030 (two successive attempts to fix
DATA/INDEX DIRECTORY vulnerabilities) and CVE-2008-4456 (mysql command line
client XSS flaw)
Resolves: #512255

[4.1.22-2.el4.1]
- Add fix for CVE-2009-2446 (format string vulnerability in COM_CREATE_DB and
COM_DROP_DB processing)
Resolves: #512255

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 4 (i386)	mysql-4.1.22-2.el4_8.3.src.rpm	396369ea3a44e3cacb383acf1dc5add1572fde173a15a72041eabda596efd071	ELSA-2010-0824	el4_i386_latest
	mysql-4.1.22-2.el4_8.3.src.rpm	396369ea3a44e3cacb383acf1dc5add1572fde173a15a72041eabda596efd071	ELSA-2010-0824	el4_u8_i386_patch
	mysql-4.1.22-2.el4_8.3.i386.rpm	92f385ede649539bec6e1e9a22a9cb37ce43090e42b6209dd6054dc211db3501	ELSA-2010-0824	el4_i386_latest
	mysql-4.1.22-2.el4_8.3.i386.rpm	92f385ede649539bec6e1e9a22a9cb37ce43090e42b6209dd6054dc211db3501	ELSA-2010-0824	el4_u8_i386_patch
	mysql-bench-4.1.22-2.el4_8.3.i386.rpm	decaa198a824f6c2e54c00bdded95ab7d585234e66798a1301bdb3016b63d168	ELSA-2010-0824	el4_i386_latest
	mysql-bench-4.1.22-2.el4_8.3.i386.rpm	decaa198a824f6c2e54c00bdded95ab7d585234e66798a1301bdb3016b63d168	ELSA-2010-0824	el4_u8_i386_patch
	mysql-devel-4.1.22-2.el4_8.3.i386.rpm	5ffea64d07b9b03d7dcd25d4a358a523936f6be428a394690c5112d4f2d8917a	ELSA-2010-0824	el4_i386_latest
	mysql-devel-4.1.22-2.el4_8.3.i386.rpm	5ffea64d07b9b03d7dcd25d4a358a523936f6be428a394690c5112d4f2d8917a	ELSA-2010-0824	el4_u8_i386_patch
	mysql-server-4.1.22-2.el4_8.3.i386.rpm	5093501c10f2b1758d4e9d4fd8ed931b39b9304789ba9a50c031621c00f0cfdd	ELSA-2010-0824	el4_i386_latest
	mysql-server-4.1.22-2.el4_8.3.i386.rpm	5093501c10f2b1758d4e9d4fd8ed931b39b9304789ba9a50c031621c00f0cfdd	ELSA-2010-0824	el4_u8_i386_patch

Oracle Linux 4 (ia64)	mysql-4.1.22-2.el4_8.3.src.rpm	396369ea3a44e3cacb383acf1dc5add1572fde173a15a72041eabda596efd071	ELSA-2010-0824	el4_ia64_latest
	mysql-4.1.22-2.el4_8.3.src.rpm	396369ea3a44e3cacb383acf1dc5add1572fde173a15a72041eabda596efd071	ELSA-2010-0824	el4_u8_ia64_patch
	mysql-4.1.22-2.el4_8.3.i386.rpm	92f385ede649539bec6e1e9a22a9cb37ce43090e42b6209dd6054dc211db3501	ELSA-2010-0824	el4_ia64_latest
	mysql-4.1.22-2.el4_8.3.i386.rpm	92f385ede649539bec6e1e9a22a9cb37ce43090e42b6209dd6054dc211db3501	ELSA-2010-0824	el4_u8_ia64_patch
	mysql-4.1.22-2.el4_8.3.ia64.rpm	2fb3d241b7bb07a5eeb2d753a02be4e966091b991f998678a33869c73a22b59d	ELSA-2010-0824	el4_ia64_latest
	mysql-4.1.22-2.el4_8.3.ia64.rpm	2fb3d241b7bb07a5eeb2d753a02be4e966091b991f998678a33869c73a22b59d	ELSA-2010-0824	el4_u8_ia64_patch
	mysql-bench-4.1.22-2.el4_8.3.ia64.rpm	f637001d0e05bb335cbcbdddee8e732443da84aaa366e6619c1d7346c05819d0	ELSA-2010-0824	el4_ia64_latest
	mysql-bench-4.1.22-2.el4_8.3.ia64.rpm	f637001d0e05bb335cbcbdddee8e732443da84aaa366e6619c1d7346c05819d0	ELSA-2010-0824	el4_u8_ia64_patch
	mysql-devel-4.1.22-2.el4_8.3.ia64.rpm	d1a7b23a2711afd7cb7268a1d99ef5c60e677f81a9767aac6e64a1e79e876d46	ELSA-2010-0824	el4_ia64_latest
	mysql-devel-4.1.22-2.el4_8.3.ia64.rpm	d1a7b23a2711afd7cb7268a1d99ef5c60e677f81a9767aac6e64a1e79e876d46	ELSA-2010-0824	el4_u8_ia64_patch
	mysql-server-4.1.22-2.el4_8.3.ia64.rpm	51a8a9a94de65e99dc2dc3596272bce526f2694ad8df40478fb35998d4434e05	ELSA-2010-0824	el4_ia64_latest
	mysql-server-4.1.22-2.el4_8.3.ia64.rpm	51a8a9a94de65e99dc2dc3596272bce526f2694ad8df40478fb35998d4434e05	ELSA-2010-0824	el4_u8_ia64_patch

Oracle Linux 4 (x86_64)	mysql-4.1.22-2.el4_8.3.src.rpm	396369ea3a44e3cacb383acf1dc5add1572fde173a15a72041eabda596efd071	ELSA-2010-0824	el4_u8_x86_64_patch
	mysql-4.1.22-2.el4_8.3.src.rpm	396369ea3a44e3cacb383acf1dc5add1572fde173a15a72041eabda596efd071	ELSA-2010-0824	el4_x86_64_latest
	mysql-4.1.22-2.el4_8.3.i386.rpm	92f385ede649539bec6e1e9a22a9cb37ce43090e42b6209dd6054dc211db3501	ELSA-2010-0824	el4_u8_x86_64_patch
	mysql-4.1.22-2.el4_8.3.i386.rpm	92f385ede649539bec6e1e9a22a9cb37ce43090e42b6209dd6054dc211db3501	ELSA-2010-0824	el4_x86_64_latest
	mysql-4.1.22-2.el4_8.3.x86_64.rpm	7da0ab889c7310b05fa3ea057094356b906f3b997cd091702311a39177449a3a	ELSA-2010-0824	el4_u8_x86_64_patch
	mysql-4.1.22-2.el4_8.3.x86_64.rpm	7da0ab889c7310b05fa3ea057094356b906f3b997cd091702311a39177449a3a	ELSA-2010-0824	el4_x86_64_latest
	mysql-bench-4.1.22-2.el4_8.3.x86_64.rpm	b97480a1c3932cc8eee38d5a72cb0245898f73f63b3361a79a10382d011dc996	ELSA-2010-0824	el4_u8_x86_64_patch
	mysql-bench-4.1.22-2.el4_8.3.x86_64.rpm	b97480a1c3932cc8eee38d5a72cb0245898f73f63b3361a79a10382d011dc996	ELSA-2010-0824	el4_x86_64_latest
	mysql-devel-4.1.22-2.el4_8.3.x86_64.rpm	93820f6f8705dff8b64fd4443a1d8ab82f64e1b5a504b0d781d43433f87d46cc	ELSA-2010-0824	el4_u8_x86_64_patch
	mysql-devel-4.1.22-2.el4_8.3.x86_64.rpm	93820f6f8705dff8b64fd4443a1d8ab82f64e1b5a504b0d781d43433f87d46cc	ELSA-2010-0824	el4_x86_64_latest
	mysql-server-4.1.22-2.el4_8.3.x86_64.rpm	a3aea77ac2f2d424b9b66748833c083b7bfc1c4a34af45d62672894510af6963	ELSA-2010-0824	el4_u8_x86_64_patch
	mysql-server-4.1.22-2.el4_8.3.x86_64.rpm	a3aea77ac2f2d424b9b66748833c083b7bfc1c4a34af45d62672894510af6963	ELSA-2010-0824	el4_x86_64_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691