- ---------------------------------------------------------------------                   Red Hat Security Advisory

Synopsis:          Important: mysql security update
Advisory ID:       RHSA-2005:334-01
Advisory URL:      https://access.redhat.com/errata/RHSA-2005:334.html
Issue date:        2005-03-28
Updated on:        2005-03-28
Product:           Red Hat Enterprise Linux
CVE Names:         CAN-2005-0709 CAN-2005-0710 CAN-2005-0711
- ---------------------------------------------------------------------1. Summary:

Updated mysql packages that fix several vulnerabilities are now available.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

3. Problem description:

MySQL is a multi-user, multi-threaded SQL database server.

This update fixes several security risks in the MySQL server.

Stefano Di Paola discovered two bugs in the way MySQL handles user-defined
functions. A user with the ability to create and execute a user defined
function could potentially execute arbitrary code on the MySQL server. The
Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned
the names CAN-2005-0709 and CAN-2005-0710 to these issues.

Stefano Di Paola also discovered a bug in the way MySQL creates temporary
tables. A local user could create a specially crafted symlink which could
result in the MySQL server overwriting a file which it has write access to.
The Common Vulnerabilities and Exposures project has assigned the name
CAN-2005-0711 to this issue.

All users of the MySQL server are advised to upgrade to these updated
packages, which contain fixes for these issues.

4. Solution:

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.  Use Red Hat
Network to download and update your packages.  To launch the Red Hat
Update Agent, use the following command:

    up2date

For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:

    http://www.redhat.com/docs/manuals/enterprise/

5. Bug IDs fixed (http://bugzilla.redhat.com/):

150868 - CAN-2005-0711 Insecure temporary file creation with CREATE TEMPORARY TABLE
150871 - CAN-2005-0710 MySQL security attacks via user-defined functions in C (CAN-2005-0709)
151051 - CAN-2005-0710 MySQL security attacks via user-defined functions in C (CAN-2005-0709)
152344 - CAN-2005-0711 Insecure temporary file creation with CREATE TEMPORARY TABLE

6. RPMs required:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1:

SRPMS:
9f8398d805ce362f80c15408233a9ed1  mysql-3.23.58-1.72.2.src.rpm

i386:
c8b10a5e219a0bb25c34a2df1b64bc18  mysql-3.23.58-1.72.2.i386.rpm
2cf8e981adf1d3c6563fefa662905819  mysql-devel-3.23.58-1.72.2.i386.rpm
eab17f634d6291a172d8da3643d0bbc9  mysql-server-3.23.58-1.72.2.i386.rpm

ia64:
a856bfd608828d4f64d9796917850273  mysql-3.23.58-1.72.2.ia64.rpm
86c85219c9bee00653f7d15c3f7430ee  mysql-devel-3.23.58-1.72.2.ia64.rpm
2b001d68cb35af5d79c24796a52ebcf0  mysql-server-3.23.58-1.72.2.ia64.rpm

Red Hat Linux Advanced Workstation 2.1:

SRPMS:
9f8398d805ce362f80c15408233a9ed1  mysql-3.23.58-1.72.2.src.rpm

ia64:
a856bfd608828d4f64d9796917850273  mysql-3.23.58-1.72.2.ia64.rpm
86c85219c9bee00653f7d15c3f7430ee  mysql-devel-3.23.58-1.72.2.ia64.rpm
2b001d68cb35af5d79c24796a52ebcf0  mysql-server-3.23.58-1.72.2.ia64.rpm

Red Hat Enterprise Linux ES version 2.1:

SRPMS:
9f8398d805ce362f80c15408233a9ed1  mysql-3.23.58-1.72.2.src.rpm

i386:
c8b10a5e219a0bb25c34a2df1b64bc18  mysql-3.23.58-1.72.2.i386.rpm
2cf8e981adf1d3c6563fefa662905819  mysql-devel-3.23.58-1.72.2.i386.rpm
eab17f634d6291a172d8da3643d0bbc9  mysql-server-3.23.58-1.72.2.i386.rpm

Red Hat Enterprise Linux WS version 2.1:

SRPMS:
9f8398d805ce362f80c15408233a9ed1  mysql-3.23.58-1.72.2.src.rpm

i386:
c8b10a5e219a0bb25c34a2df1b64bc18  mysql-3.23.58-1.72.2.i386.rpm
2cf8e981adf1d3c6563fefa662905819  mysql-devel-3.23.58-1.72.2.i386.rpm
eab17f634d6291a172d8da3643d0bbc9  mysql-server-3.23.58-1.72.2.i386.rpm

Red Hat Enterprise Linux AS version 3:

SRPMS:
854563dcb2706dbf0eb417442e4dd601  mysql-3.23.58-15.RHEL3.1.src.rpm

i386:
6e214b26ef33b2a8af7e94e37af6fc4b  mysql-3.23.58-15.RHEL3.1.i386.rpm
84d4de6d6a9fe46cd989d3f28f605a0e  mysql-bench-3.23.58-15.RHEL3.1.i386.rpm
0c20117cddfcbcc2ae85b1329cb9dd5e  mysql-devel-3.23.58-15.RHEL3.1.i386.rpm

ia64:
f11140c71bd0153313b568b5a2f3c3ce  mysql-3.23.58-15.RHEL3.1.ia64.rpm
6e214b26ef33b2a8af7e94e37af6fc4b  mysql-3.23.58-15.RHEL3.1.i386.rpm
16090c803a0ebe16c182225a579238ee  mysql-bench-3.23.58-15.RHEL3.1.ia64.rpm
88f6753a99b5ee4f47a2d10c4861c945  mysql-devel-3.23.58-15.RHEL3.1.ia64.rpm

ppc:
a81cdaff84d2f09eb83a102917191afe  mysql-3.23.58-15.RHEL3.1.ppc.rpm
45af37f982e521565793473f340e5be5  mysql-3.23.58-15.RHEL3.1.ppc64.rpm
59b3a8a7e23532c70d881b475af4bd7d  mysql-bench-3.23.58-15.RHEL3.1.ppc.rpm
3cd8cb4cd0915e0bbd96efa890d9bee4  mysql-devel-3.23.58-15.RHEL3.1.ppc.rpm

s390:
142b2ed96d26cae6cc4643307909ca91  mysql-3.23.58-15.RHEL3.1.s390.rpm
6562ff7efbe46ecbc1278355653ea7d8  mysql-bench-3.23.58-15.RHEL3.1.s390.rpm
55dc03163e7ffcb5b549ed5865a09d75  mysql-devel-3.23.58-15.RHEL3.1.s390.rpm

s390x:
58e2b16cefa1011b037c3eb19abbadd7  mysql-3.23.58-15.RHEL3.1.s390x.rpm
142b2ed96d26cae6cc4643307909ca91  mysql-3.23.58-15.RHEL3.1.s390.rpm
219bc280dfcc231e133fb176cc5d830c  mysql-bench-3.23.58-15.RHEL3.1.s390x.rpm
fc9aaa8d267db06e32541a474cbfb743  mysql-devel-3.23.58-15.RHEL3.1.s390x.rpm

x86_64:
429fb7ce5fc1e0284c9926df6294d8a3  mysql-3.23.58-15.RHEL3.1.x86_64.rpm
6e214b26ef33b2a8af7e94e37af6fc4b  mysql-3.23.58-15.RHEL3.1.i386.rpm
b25503c0af603c1d969c45e7b2a2438c  mysql-bench-3.23.58-15.RHEL3.1.x86_64.rpm
8068983267456132f1c70468521e3dfd  mysql-devel-3.23.58-15.RHEL3.1.x86_64.rpm

Red Hat Desktop version 3:

SRPMS:
854563dcb2706dbf0eb417442e4dd601  mysql-3.23.58-15.RHEL3.1.src.rpm

i386:
6e214b26ef33b2a8af7e94e37af6fc4b  mysql-3.23.58-15.RHEL3.1.i386.rpm
84d4de6d6a9fe46cd989d3f28f605a0e  mysql-bench-3.23.58-15.RHEL3.1.i386.rpm
0c20117cddfcbcc2ae85b1329cb9dd5e  mysql-devel-3.23.58-15.RHEL3.1.i386.rpm

x86_64:
429fb7ce5fc1e0284c9926df6294d8a3  mysql-3.23.58-15.RHEL3.1.x86_64.rpm
6e214b26ef33b2a8af7e94e37af6fc4b  mysql-3.23.58-15.RHEL3.1.i386.rpm
b25503c0af603c1d969c45e7b2a2438c  mysql-bench-3.23.58-15.RHEL3.1.x86_64.rpm
8068983267456132f1c70468521e3dfd  mysql-devel-3.23.58-15.RHEL3.1.x86_64.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS:
854563dcb2706dbf0eb417442e4dd601  mysql-3.23.58-15.RHEL3.1.src.rpm

i386:
6e214b26ef33b2a8af7e94e37af6fc4b  mysql-3.23.58-15.RHEL3.1.i386.rpm
84d4de6d6a9fe46cd989d3f28f605a0e  mysql-bench-3.23.58-15.RHEL3.1.i386.rpm
0c20117cddfcbcc2ae85b1329cb9dd5e  mysql-devel-3.23.58-15.RHEL3.1.i386.rpm

ia64:
f11140c71bd0153313b568b5a2f3c3ce  mysql-3.23.58-15.RHEL3.1.ia64.rpm
6e214b26ef33b2a8af7e94e37af6fc4b  mysql-3.23.58-15.RHEL3.1.i386.rpm
16090c803a0ebe16c182225a579238ee  mysql-bench-3.23.58-15.RHEL3.1.ia64.rpm
88f6753a99b5ee4f47a2d10c4861c945  mysql-devel-3.23.58-15.RHEL3.1.ia64.rpm

x86_64:
429fb7ce5fc1e0284c9926df6294d8a3  mysql-3.23.58-15.RHEL3.1.x86_64.rpm
6e214b26ef33b2a8af7e94e37af6fc4b  mysql-3.23.58-15.RHEL3.1.i386.rpm
b25503c0af603c1d969c45e7b2a2438c  mysql-bench-3.23.58-15.RHEL3.1.x86_64.rpm
8068983267456132f1c70468521e3dfd  mysql-devel-3.23.58-15.RHEL3.1.x86_64.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS:
854563dcb2706dbf0eb417442e4dd601  mysql-3.23.58-15.RHEL3.1.src.rpm

i386:
6e214b26ef33b2a8af7e94e37af6fc4b  mysql-3.23.58-15.RHEL3.1.i386.rpm
84d4de6d6a9fe46cd989d3f28f605a0e  mysql-bench-3.23.58-15.RHEL3.1.i386.rpm
0c20117cddfcbcc2ae85b1329cb9dd5e  mysql-devel-3.23.58-15.RHEL3.1.i386.rpm

ia64:
f11140c71bd0153313b568b5a2f3c3ce  mysql-3.23.58-15.RHEL3.1.ia64.rpm
6e214b26ef33b2a8af7e94e37af6fc4b  mysql-3.23.58-15.RHEL3.1.i386.rpm
16090c803a0ebe16c182225a579238ee  mysql-bench-3.23.58-15.RHEL3.1.ia64.rpm
88f6753a99b5ee4f47a2d10c4861c945  mysql-devel-3.23.58-15.RHEL3.1.ia64.rpm

x86_64:
429fb7ce5fc1e0284c9926df6294d8a3  mysql-3.23.58-15.RHEL3.1.x86_64.rpm
6e214b26ef33b2a8af7e94e37af6fc4b  mysql-3.23.58-15.RHEL3.1.i386.rpm
b25503c0af603c1d969c45e7b2a2438c  mysql-bench-3.23.58-15.RHEL3.1.x86_64.rpm
8068983267456132f1c70468521e3dfd  mysql-devel-3.23.58-15.RHEL3.1.x86_64.rpm

Red Hat Enterprise Linux AS version 4:

SRPMS:
b6a840faaf98a346425dd9a06c8fec10  mysql-4.1.10a-1.RHEL4.1.src.rpm

i386:
6a7fdca164e9d66223f86902be96a088  mysql-4.1.10a-1.RHEL4.1.i386.rpm
0187c8af0101368f12335745e860039b  mysql-bench-4.1.10a-1.RHEL4.1.i386.rpm
11878e76e63152275d496917c66e9306  mysql-devel-4.1.10a-1.RHEL4.1.i386.rpm
7ebf9d00d246c7da140b57ea998d29da  mysql-server-4.1.10a-1.RHEL4.1.i386.rpm

ia64:
c5e66b2052dddad3f7efa8f5a2548306  mysql-4.1.10a-1.RHEL4.1.ia64.rpm
6a7fdca164e9d66223f86902be96a088  mysql-4.1.10a-1.RHEL4.1.i386.rpm
33db1d591733c449d28795506be1d3ec  mysql-bench-4.1.10a-1.RHEL4.1.ia64.rpm
960eaaf9f5cf36e0b0a94ab1ef9c21b9  mysql-devel-4.1.10a-1.RHEL4.1.ia64.rpm
4bf66c5b263eb18988cd969ecebd8e58  mysql-server-4.1.10a-1.RHEL4.1.ia64.rpm

ppc:
5b88ed2db9ae0fd206eaaa103f043a08  mysql-4.1.10a-1.RHEL4.1.ppc.rpm
64fd1fa7bc38b404acccbcc38fdf8211  mysql-4.1.10a-1.RHEL4.1.ppc64.rpm
f94c6abe0859ec58e6eceaf05edbfe2b  mysql-bench-4.1.10a-1.RHEL4.1.ppc.rpm
ee2a0cc6256bc7329789895e199e859a  mysql-devel-4.1.10a-1.RHEL4.1.ppc.rpm
b5fb67ecd12729f5a473803d12529813  mysql-server-4.1.10a-1.RHEL4.1.ppc.rpm

s390:
ae44637b61fe5b9c56c7306b396c0bff  mysql-4.1.10a-1.RHEL4.1.s390.rpm
5d96344a3dfbd15f42e63d72d9648093  mysql-bench-4.1.10a-1.RHEL4.1.s390.rpm
21c55ea6889bb3a41c42a25f1083d328  mysql-devel-4.1.10a-1.RHEL4.1.s390.rpm
3bff18b1d43eb5ef74be7b08714d2978  mysql-server-4.1.10a-1.RHEL4.1.s390.rpm

s390x:
9f406ee647de81c005d89d38760b5574  mysql-4.1.10a-1.RHEL4.1.s390x.rpm
ae44637b61fe5b9c56c7306b396c0bff  mysql-4.1.10a-1.RHEL4.1.s390.rpm
c2c3bb4b29a135ff177c964e167d3a3e  mysql-bench-4.1.10a-1.RHEL4.1.s390x.rpm
e858acd2e61b4d7e7874b4f49a00308e  mysql-devel-4.1.10a-1.RHEL4.1.s390x.rpm
9c12db91656385534ac3a8efdbc5705b  mysql-server-4.1.10a-1.RHEL4.1.s390x.rpm

x86_64:
aa863d0a948e88220b65196997553834  mysql-4.1.10a-1.RHEL4.1.x86_64.rpm
6a7fdca164e9d66223f86902be96a088  mysql-4.1.10a-1.RHEL4.1.i386.rpm
859368a712acb8c2cb9c574c340b641f  mysql-bench-4.1.10a-1.RHEL4.1.x86_64.rpm
bb6f83b4432b00bbd495a753f340b84a  mysql-devel-4.1.10a-1.RHEL4.1.x86_64.rpm
ca64d3910c12363a62ec773785f31724  mysql-server-4.1.10a-1.RHEL4.1.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS:
b6a840faaf98a346425dd9a06c8fec10  mysql-4.1.10a-1.RHEL4.1.src.rpm

i386:
6a7fdca164e9d66223f86902be96a088  mysql-4.1.10a-1.RHEL4.1.i386.rpm
0187c8af0101368f12335745e860039b  mysql-bench-4.1.10a-1.RHEL4.1.i386.rpm
11878e76e63152275d496917c66e9306  mysql-devel-4.1.10a-1.RHEL4.1.i386.rpm
7ebf9d00d246c7da140b57ea998d29da  mysql-server-4.1.10a-1.RHEL4.1.i386.rpm

x86_64:
aa863d0a948e88220b65196997553834  mysql-4.1.10a-1.RHEL4.1.x86_64.rpm
6a7fdca164e9d66223f86902be96a088  mysql-4.1.10a-1.RHEL4.1.i386.rpm
859368a712acb8c2cb9c574c340b641f  mysql-bench-4.1.10a-1.RHEL4.1.x86_64.rpm
bb6f83b4432b00bbd495a753f340b84a  mysql-devel-4.1.10a-1.RHEL4.1.x86_64.rpm
ca64d3910c12363a62ec773785f31724  mysql-server-4.1.10a-1.RHEL4.1.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS:
b6a840faaf98a346425dd9a06c8fec10  mysql-4.1.10a-1.RHEL4.1.src.rpm

i386:
6a7fdca164e9d66223f86902be96a088  mysql-4.1.10a-1.RHEL4.1.i386.rpm
0187c8af0101368f12335745e860039b  mysql-bench-4.1.10a-1.RHEL4.1.i386.rpm
11878e76e63152275d496917c66e9306  mysql-devel-4.1.10a-1.RHEL4.1.i386.rpm
7ebf9d00d246c7da140b57ea998d29da  mysql-server-4.1.10a-1.RHEL4.1.i386.rpm

ia64:
c5e66b2052dddad3f7efa8f5a2548306  mysql-4.1.10a-1.RHEL4.1.ia64.rpm
6a7fdca164e9d66223f86902be96a088  mysql-4.1.10a-1.RHEL4.1.i386.rpm
33db1d591733c449d28795506be1d3ec  mysql-bench-4.1.10a-1.RHEL4.1.ia64.rpm
960eaaf9f5cf36e0b0a94ab1ef9c21b9  mysql-devel-4.1.10a-1.RHEL4.1.ia64.rpm
4bf66c5b263eb18988cd969ecebd8e58  mysql-server-4.1.10a-1.RHEL4.1.ia64.rpm

x86_64:
aa863d0a948e88220b65196997553834  mysql-4.1.10a-1.RHEL4.1.x86_64.rpm
6a7fdca164e9d66223f86902be96a088  mysql-4.1.10a-1.RHEL4.1.i386.rpm
859368a712acb8c2cb9c574c340b641f  mysql-bench-4.1.10a-1.RHEL4.1.x86_64.rpm
bb6f83b4432b00bbd495a753f340b84a  mysql-devel-4.1.10a-1.RHEL4.1.x86_64.rpm
ca64d3910c12363a62ec773785f31724  mysql-server-4.1.10a-1.RHEL4.1.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS:
b6a840faaf98a346425dd9a06c8fec10  mysql-4.1.10a-1.RHEL4.1.src.rpm

i386:
6a7fdca164e9d66223f86902be96a088  mysql-4.1.10a-1.RHEL4.1.i386.rpm
0187c8af0101368f12335745e860039b  mysql-bench-4.1.10a-1.RHEL4.1.i386.rpm
11878e76e63152275d496917c66e9306  mysql-devel-4.1.10a-1.RHEL4.1.i386.rpm
7ebf9d00d246c7da140b57ea998d29da  mysql-server-4.1.10a-1.RHEL4.1.i386.rpm

ia64:
c5e66b2052dddad3f7efa8f5a2548306  mysql-4.1.10a-1.RHEL4.1.ia64.rpm
6a7fdca164e9d66223f86902be96a088  mysql-4.1.10a-1.RHEL4.1.i386.rpm
33db1d591733c449d28795506be1d3ec  mysql-bench-4.1.10a-1.RHEL4.1.ia64.rpm
960eaaf9f5cf36e0b0a94ab1ef9c21b9  mysql-devel-4.1.10a-1.RHEL4.1.ia64.rpm
4bf66c5b263eb18988cd969ecebd8e58  mysql-server-4.1.10a-1.RHEL4.1.ia64.rpm

x86_64:
aa863d0a948e88220b65196997553834  mysql-4.1.10a-1.RHEL4.1.x86_64.rpm
6a7fdca164e9d66223f86902be96a088  mysql-4.1.10a-1.RHEL4.1.i386.rpm
859368a712acb8c2cb9c574c340b641f  mysql-bench-4.1.10a-1.RHEL4.1.x86_64.rpm
bb6f83b4432b00bbd495a753f340b84a  mysql-devel-4.1.10a-1.RHEL4.1.x86_64.rpm
ca64d3910c12363a62ec773785f31724  mysql-server-4.1.10a-1.RHEL4.1.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and 
details on how to verify the signature are available from
https://www.redhat.com/security/team/key/#package

7. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0709
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0710
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0711

8. Contact:

The Red Hat security contact is .  More contact
details at https://www.redhat.com/security/team/contact/

Copyright 2005 Red Hat, Inc.

RedHat: Important: mysql security update RHSA-2005:334-01

Updated mysql packages that fix several vulnerabilities are now available. This update has been rated as having important security impact by the Red Hat Security Response Team.

Summary



Summary

MySQL is a multi-user, multi-threaded SQL database server. This update fixes several security risks in the MySQL server. Stefano Di Paola discovered two bugs in the way MySQL handles user-defined functions. A user with the ability to create and execute a user defined function could potentially execute arbitrary code on the MySQL server. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CAN-2005-0709 and CAN-2005-0710 to these issues. Stefano Di Paola also discovered a bug in the way MySQL creates temporary tables. A local user could create a specially crafted symlink which could result in the MySQL server overwriting a file which it has write access to. The Common Vulnerabilities and Exposures project has assigned the name CAN-2005-0711 to this issue. All users of the MySQL server are advised to upgrade to these updated packages, which contain fixes for these issues.


Solution

Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command:
up2date
For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system:
http://www.redhat.com/docs/manuals/enterprise/
5. Bug IDs fixed (http://bugzilla.redhat.com/):
150868 - CAN-2005-0711 Insecure temporary file creation with CREATE TEMPORARY TABLE 150871 - CAN-2005-0710 MySQL security attacks via user-defined functions in C (CAN-2005-0709) 151051 - CAN-2005-0710 MySQL security attacks via user-defined functions in C (CAN-2005-0709) 152344 - CAN-2005-0711 Insecure temporary file creation with CREATE TEMPORARY TABLE
6. RPMs required:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1:
SRPMS: 9f8398d805ce362f80c15408233a9ed1 mysql-3.23.58-1.72.2.src.rpm
i386: c8b10a5e219a0bb25c34a2df1b64bc18 mysql-3.23.58-1.72.2.i386.rpm 2cf8e981adf1d3c6563fefa662905819 mysql-devel-3.23.58-1.72.2.i386.rpm eab17f634d6291a172d8da3643d0bbc9 mysql-server-3.23.58-1.72.2.i386.rpm
ia64: a856bfd608828d4f64d9796917850273 mysql-3.23.58-1.72.2.ia64.rpm 86c85219c9bee00653f7d15c3f7430ee mysql-devel-3.23.58-1.72.2.ia64.rpm 2b001d68cb35af5d79c24796a52ebcf0 mysql-server-3.23.58-1.72.2.ia64.rpm
Red Hat Linux Advanced Workstation 2.1:
SRPMS: 9f8398d805ce362f80c15408233a9ed1 mysql-3.23.58-1.72.2.src.rpm
ia64: a856bfd608828d4f64d9796917850273 mysql-3.23.58-1.72.2.ia64.rpm 86c85219c9bee00653f7d15c3f7430ee mysql-devel-3.23.58-1.72.2.ia64.rpm 2b001d68cb35af5d79c24796a52ebcf0 mysql-server-3.23.58-1.72.2.ia64.rpm
Red Hat Enterprise Linux ES version 2.1:
SRPMS: 9f8398d805ce362f80c15408233a9ed1 mysql-3.23.58-1.72.2.src.rpm
i386: c8b10a5e219a0bb25c34a2df1b64bc18 mysql-3.23.58-1.72.2.i386.rpm 2cf8e981adf1d3c6563fefa662905819 mysql-devel-3.23.58-1.72.2.i386.rpm eab17f634d6291a172d8da3643d0bbc9 mysql-server-3.23.58-1.72.2.i386.rpm
Red Hat Enterprise Linux WS version 2.1:
SRPMS: 9f8398d805ce362f80c15408233a9ed1 mysql-3.23.58-1.72.2.src.rpm
i386: c8b10a5e219a0bb25c34a2df1b64bc18 mysql-3.23.58-1.72.2.i386.rpm 2cf8e981adf1d3c6563fefa662905819 mysql-devel-3.23.58-1.72.2.i386.rpm eab17f634d6291a172d8da3643d0bbc9 mysql-server-3.23.58-1.72.2.i386.rpm
Red Hat Enterprise Linux AS version 3:
SRPMS: 854563dcb2706dbf0eb417442e4dd601 mysql-3.23.58-15.RHEL3.1.src.rpm
i386: 6e214b26ef33b2a8af7e94e37af6fc4b mysql-3.23.58-15.RHEL3.1.i386.rpm 84d4de6d6a9fe46cd989d3f28f605a0e mysql-bench-3.23.58-15.RHEL3.1.i386.rpm 0c20117cddfcbcc2ae85b1329cb9dd5e mysql-devel-3.23.58-15.RHEL3.1.i386.rpm
ia64: f11140c71bd0153313b568b5a2f3c3ce mysql-3.23.58-15.RHEL3.1.ia64.rpm 6e214b26ef33b2a8af7e94e37af6fc4b mysql-3.23.58-15.RHEL3.1.i386.rpm 16090c803a0ebe16c182225a579238ee mysql-bench-3.23.58-15.RHEL3.1.ia64.rpm 88f6753a99b5ee4f47a2d10c4861c945 mysql-devel-3.23.58-15.RHEL3.1.ia64.rpm
ppc: a81cdaff84d2f09eb83a102917191afe mysql-3.23.58-15.RHEL3.1.ppc.rpm 45af37f982e521565793473f340e5be5 mysql-3.23.58-15.RHEL3.1.ppc64.rpm 59b3a8a7e23532c70d881b475af4bd7d mysql-bench-3.23.58-15.RHEL3.1.ppc.rpm 3cd8cb4cd0915e0bbd96efa890d9bee4 mysql-devel-3.23.58-15.RHEL3.1.ppc.rpm
s390: 142b2ed96d26cae6cc4643307909ca91 mysql-3.23.58-15.RHEL3.1.s390.rpm 6562ff7efbe46ecbc1278355653ea7d8 mysql-bench-3.23.58-15.RHEL3.1.s390.rpm 55dc03163e7ffcb5b549ed5865a09d75 mysql-devel-3.23.58-15.RHEL3.1.s390.rpm
s390x: 58e2b16cefa1011b037c3eb19abbadd7 mysql-3.23.58-15.RHEL3.1.s390x.rpm 142b2ed96d26cae6cc4643307909ca91 mysql-3.23.58-15.RHEL3.1.s390.rpm 219bc280dfcc231e133fb176cc5d830c mysql-bench-3.23.58-15.RHEL3.1.s390x.rpm fc9aaa8d267db06e32541a474cbfb743 mysql-devel-3.23.58-15.RHEL3.1.s390x.rpm
x86_64: 429fb7ce5fc1e0284c9926df6294d8a3 mysql-3.23.58-15.RHEL3.1.x86_64.rpm 6e214b26ef33b2a8af7e94e37af6fc4b mysql-3.23.58-15.RHEL3.1.i386.rpm b25503c0af603c1d969c45e7b2a2438c mysql-bench-3.23.58-15.RHEL3.1.x86_64.rpm 8068983267456132f1c70468521e3dfd mysql-devel-3.23.58-15.RHEL3.1.x86_64.rpm
Red Hat Desktop version 3:
SRPMS: 854563dcb2706dbf0eb417442e4dd601 mysql-3.23.58-15.RHEL3.1.src.rpm
i386: 6e214b26ef33b2a8af7e94e37af6fc4b mysql-3.23.58-15.RHEL3.1.i386.rpm 84d4de6d6a9fe46cd989d3f28f605a0e mysql-bench-3.23.58-15.RHEL3.1.i386.rpm 0c20117cddfcbcc2ae85b1329cb9dd5e mysql-devel-3.23.58-15.RHEL3.1.i386.rpm
x86_64: 429fb7ce5fc1e0284c9926df6294d8a3 mysql-3.23.58-15.RHEL3.1.x86_64.rpm 6e214b26ef33b2a8af7e94e37af6fc4b mysql-3.23.58-15.RHEL3.1.i386.rpm b25503c0af603c1d969c45e7b2a2438c mysql-bench-3.23.58-15.RHEL3.1.x86_64.rpm 8068983267456132f1c70468521e3dfd mysql-devel-3.23.58-15.RHEL3.1.x86_64.rpm
Red Hat Enterprise Linux ES version 3:
SRPMS: 854563dcb2706dbf0eb417442e4dd601 mysql-3.23.58-15.RHEL3.1.src.rpm
i386: 6e214b26ef33b2a8af7e94e37af6fc4b mysql-3.23.58-15.RHEL3.1.i386.rpm 84d4de6d6a9fe46cd989d3f28f605a0e mysql-bench-3.23.58-15.RHEL3.1.i386.rpm 0c20117cddfcbcc2ae85b1329cb9dd5e mysql-devel-3.23.58-15.RHEL3.1.i386.rpm
ia64: f11140c71bd0153313b568b5a2f3c3ce mysql-3.23.58-15.RHEL3.1.ia64.rpm 6e214b26ef33b2a8af7e94e37af6fc4b mysql-3.23.58-15.RHEL3.1.i386.rpm 16090c803a0ebe16c182225a579238ee mysql-bench-3.23.58-15.RHEL3.1.ia64.rpm 88f6753a99b5ee4f47a2d10c4861c945 mysql-devel-3.23.58-15.RHEL3.1.ia64.rpm
x86_64: 429fb7ce5fc1e0284c9926df6294d8a3 mysql-3.23.58-15.RHEL3.1.x86_64.rpm 6e214b26ef33b2a8af7e94e37af6fc4b mysql-3.23.58-15.RHEL3.1.i386.rpm b25503c0af603c1d969c45e7b2a2438c mysql-bench-3.23.58-15.RHEL3.1.x86_64.rpm 8068983267456132f1c70468521e3dfd mysql-devel-3.23.58-15.RHEL3.1.x86_64.rpm
Red Hat Enterprise Linux WS version 3:
SRPMS: 854563dcb2706dbf0eb417442e4dd601 mysql-3.23.58-15.RHEL3.1.src.rpm
i386: 6e214b26ef33b2a8af7e94e37af6fc4b mysql-3.23.58-15.RHEL3.1.i386.rpm 84d4de6d6a9fe46cd989d3f28f605a0e mysql-bench-3.23.58-15.RHEL3.1.i386.rpm 0c20117cddfcbcc2ae85b1329cb9dd5e mysql-devel-3.23.58-15.RHEL3.1.i386.rpm
ia64: f11140c71bd0153313b568b5a2f3c3ce mysql-3.23.58-15.RHEL3.1.ia64.rpm 6e214b26ef33b2a8af7e94e37af6fc4b mysql-3.23.58-15.RHEL3.1.i386.rpm 16090c803a0ebe16c182225a579238ee mysql-bench-3.23.58-15.RHEL3.1.ia64.rpm 88f6753a99b5ee4f47a2d10c4861c945 mysql-devel-3.23.58-15.RHEL3.1.ia64.rpm
x86_64: 429fb7ce5fc1e0284c9926df6294d8a3 mysql-3.23.58-15.RHEL3.1.x86_64.rpm 6e214b26ef33b2a8af7e94e37af6fc4b mysql-3.23.58-15.RHEL3.1.i386.rpm b25503c0af603c1d969c45e7b2a2438c mysql-bench-3.23.58-15.RHEL3.1.x86_64.rpm 8068983267456132f1c70468521e3dfd mysql-devel-3.23.58-15.RHEL3.1.x86_64.rpm
Red Hat Enterprise Linux AS version 4:
SRPMS: b6a840faaf98a346425dd9a06c8fec10 mysql-4.1.10a-1.RHEL4.1.src.rpm
i386: 6a7fdca164e9d66223f86902be96a088 mysql-4.1.10a-1.RHEL4.1.i386.rpm 0187c8af0101368f12335745e860039b mysql-bench-4.1.10a-1.RHEL4.1.i386.rpm 11878e76e63152275d496917c66e9306 mysql-devel-4.1.10a-1.RHEL4.1.i386.rpm 7ebf9d00d246c7da140b57ea998d29da mysql-server-4.1.10a-1.RHEL4.1.i386.rpm
ia64: c5e66b2052dddad3f7efa8f5a2548306 mysql-4.1.10a-1.RHEL4.1.ia64.rpm 6a7fdca164e9d66223f86902be96a088 mysql-4.1.10a-1.RHEL4.1.i386.rpm 33db1d591733c449d28795506be1d3ec mysql-bench-4.1.10a-1.RHEL4.1.ia64.rpm 960eaaf9f5cf36e0b0a94ab1ef9c21b9 mysql-devel-4.1.10a-1.RHEL4.1.ia64.rpm 4bf66c5b263eb18988cd969ecebd8e58 mysql-server-4.1.10a-1.RHEL4.1.ia64.rpm
ppc: 5b88ed2db9ae0fd206eaaa103f043a08 mysql-4.1.10a-1.RHEL4.1.ppc.rpm 64fd1fa7bc38b404acccbcc38fdf8211 mysql-4.1.10a-1.RHEL4.1.ppc64.rpm f94c6abe0859ec58e6eceaf05edbfe2b mysql-bench-4.1.10a-1.RHEL4.1.ppc.rpm ee2a0cc6256bc7329789895e199e859a mysql-devel-4.1.10a-1.RHEL4.1.ppc.rpm b5fb67ecd12729f5a473803d12529813 mysql-server-4.1.10a-1.RHEL4.1.ppc.rpm
s390: ae44637b61fe5b9c56c7306b396c0bff mysql-4.1.10a-1.RHEL4.1.s390.rpm 5d96344a3dfbd15f42e63d72d9648093 mysql-bench-4.1.10a-1.RHEL4.1.s390.rpm 21c55ea6889bb3a41c42a25f1083d328 mysql-devel-4.1.10a-1.RHEL4.1.s390.rpm 3bff18b1d43eb5ef74be7b08714d2978 mysql-server-4.1.10a-1.RHEL4.1.s390.rpm
s390x: 9f406ee647de81c005d89d38760b5574 mysql-4.1.10a-1.RHEL4.1.s390x.rpm ae44637b61fe5b9c56c7306b396c0bff mysql-4.1.10a-1.RHEL4.1.s390.rpm c2c3bb4b29a135ff177c964e167d3a3e mysql-bench-4.1.10a-1.RHEL4.1.s390x.rpm e858acd2e61b4d7e7874b4f49a00308e mysql-devel-4.1.10a-1.RHEL4.1.s390x.rpm 9c12db91656385534ac3a8efdbc5705b mysql-server-4.1.10a-1.RHEL4.1.s390x.rpm
x86_64: aa863d0a948e88220b65196997553834 mysql-4.1.10a-1.RHEL4.1.x86_64.rpm 6a7fdca164e9d66223f86902be96a088 mysql-4.1.10a-1.RHEL4.1.i386.rpm 859368a712acb8c2cb9c574c340b641f mysql-bench-4.1.10a-1.RHEL4.1.x86_64.rpm bb6f83b4432b00bbd495a753f340b84a mysql-devel-4.1.10a-1.RHEL4.1.x86_64.rpm ca64d3910c12363a62ec773785f31724 mysql-server-4.1.10a-1.RHEL4.1.x86_64.rpm
Red Hat Enterprise Linux Desktop version 4:
SRPMS: b6a840faaf98a346425dd9a06c8fec10 mysql-4.1.10a-1.RHEL4.1.src.rpm
i386: 6a7fdca164e9d66223f86902be96a088 mysql-4.1.10a-1.RHEL4.1.i386.rpm 0187c8af0101368f12335745e860039b mysql-bench-4.1.10a-1.RHEL4.1.i386.rpm 11878e76e63152275d496917c66e9306 mysql-devel-4.1.10a-1.RHEL4.1.i386.rpm 7ebf9d00d246c7da140b57ea998d29da mysql-server-4.1.10a-1.RHEL4.1.i386.rpm
x86_64: aa863d0a948e88220b65196997553834 mysql-4.1.10a-1.RHEL4.1.x86_64.rpm 6a7fdca164e9d66223f86902be96a088 mysql-4.1.10a-1.RHEL4.1.i386.rpm 859368a712acb8c2cb9c574c340b641f mysql-bench-4.1.10a-1.RHEL4.1.x86_64.rpm bb6f83b4432b00bbd495a753f340b84a mysql-devel-4.1.10a-1.RHEL4.1.x86_64.rpm ca64d3910c12363a62ec773785f31724 mysql-server-4.1.10a-1.RHEL4.1.x86_64.rpm
Red Hat Enterprise Linux ES version 4:
SRPMS: b6a840faaf98a346425dd9a06c8fec10 mysql-4.1.10a-1.RHEL4.1.src.rpm
i386: 6a7fdca164e9d66223f86902be96a088 mysql-4.1.10a-1.RHEL4.1.i386.rpm 0187c8af0101368f12335745e860039b mysql-bench-4.1.10a-1.RHEL4.1.i386.rpm 11878e76e63152275d496917c66e9306 mysql-devel-4.1.10a-1.RHEL4.1.i386.rpm 7ebf9d00d246c7da140b57ea998d29da mysql-server-4.1.10a-1.RHEL4.1.i386.rpm
ia64: c5e66b2052dddad3f7efa8f5a2548306 mysql-4.1.10a-1.RHEL4.1.ia64.rpm 6a7fdca164e9d66223f86902be96a088 mysql-4.1.10a-1.RHEL4.1.i386.rpm 33db1d591733c449d28795506be1d3ec mysql-bench-4.1.10a-1.RHEL4.1.ia64.rpm 960eaaf9f5cf36e0b0a94ab1ef9c21b9 mysql-devel-4.1.10a-1.RHEL4.1.ia64.rpm 4bf66c5b263eb18988cd969ecebd8e58 mysql-server-4.1.10a-1.RHEL4.1.ia64.rpm
x86_64: aa863d0a948e88220b65196997553834 mysql-4.1.10a-1.RHEL4.1.x86_64.rpm 6a7fdca164e9d66223f86902be96a088 mysql-4.1.10a-1.RHEL4.1.i386.rpm 859368a712acb8c2cb9c574c340b641f mysql-bench-4.1.10a-1.RHEL4.1.x86_64.rpm bb6f83b4432b00bbd495a753f340b84a mysql-devel-4.1.10a-1.RHEL4.1.x86_64.rpm ca64d3910c12363a62ec773785f31724 mysql-server-4.1.10a-1.RHEL4.1.x86_64.rpm
Red Hat Enterprise Linux WS version 4:
SRPMS: b6a840faaf98a346425dd9a06c8fec10 mysql-4.1.10a-1.RHEL4.1.src.rpm
i386: 6a7fdca164e9d66223f86902be96a088 mysql-4.1.10a-1.RHEL4.1.i386.rpm 0187c8af0101368f12335745e860039b mysql-bench-4.1.10a-1.RHEL4.1.i386.rpm 11878e76e63152275d496917c66e9306 mysql-devel-4.1.10a-1.RHEL4.1.i386.rpm 7ebf9d00d246c7da140b57ea998d29da mysql-server-4.1.10a-1.RHEL4.1.i386.rpm
ia64: c5e66b2052dddad3f7efa8f5a2548306 mysql-4.1.10a-1.RHEL4.1.ia64.rpm 6a7fdca164e9d66223f86902be96a088 mysql-4.1.10a-1.RHEL4.1.i386.rpm 33db1d591733c449d28795506be1d3ec mysql-bench-4.1.10a-1.RHEL4.1.ia64.rpm 960eaaf9f5cf36e0b0a94ab1ef9c21b9 mysql-devel-4.1.10a-1.RHEL4.1.ia64.rpm 4bf66c5b263eb18988cd969ecebd8e58 mysql-server-4.1.10a-1.RHEL4.1.ia64.rpm
x86_64: aa863d0a948e88220b65196997553834 mysql-4.1.10a-1.RHEL4.1.x86_64.rpm 6a7fdca164e9d66223f86902be96a088 mysql-4.1.10a-1.RHEL4.1.i386.rpm 859368a712acb8c2cb9c574c340b641f mysql-bench-4.1.10a-1.RHEL4.1.x86_64.rpm bb6f83b4432b00bbd495a753f340b84a mysql-devel-4.1.10a-1.RHEL4.1.x86_64.rpm ca64d3910c12363a62ec773785f31724 mysql-server-4.1.10a-1.RHEL4.1.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0709 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0710 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0711

Package List


Severity
Advisory ID: RHSA-2005:334-01
Advisory URL: https://access.redhat.com/errata/RHSA-2005:334.html
Issued Date: : 2005-03-28
Updated on: 2005-03-28
Product: Red Hat Enterprise Linux
CVE Names: CAN-2005-0709 CAN-2005-0710 CAN-2005-0711 Updated mysql packages that fix several vulnerabilities are now available. This update has been rated as having important security impact by the Red Hat Security Response Team.

Topic


Topic


 

Relevant Releases Architectures

Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64

Red Hat Linux Advanced Workstation 2.1 - ia64

Red Hat Enterprise Linux ES version 2.1 - i386

Red Hat Enterprise Linux WS version 2.1 - i386

Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64

Red Hat Desktop version 3 - i386, x86_64

Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64

Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64

Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64

Red Hat Enterprise Linux Desktop version 4 - i386, x86_64

Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64

Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64


Bugs Fixed


Related News

The End of the Road for Linux 6.11: A Call to Upgrade to Kernel 6.12
3 - 5 min read
The Linux kernel community recently issued an EOL announcement regarding the 6.11 kernel series, urging sysadmins to upgrade quickly to 6.12 . This
A Linux Admin
3 - 6 min read
As 2025 approaches, we Linux admins are facing new and often unseen cloud-native security obstacles. While skilled at mitigating known risks,
Leveraging Insights from the Linux Foundation
3 - 5 min read
The Linux Foundation's recent Census III report provides critical insights for Linux administrators, information security professionals, and anyone
Chrome 131 Released: Emergency Security Update Fixes Over a Dozen Significant Vulns
3 - 6 min read
Google recently unveiled a critical security update to their popular web browser, Google Chrome, addressing over a dozen significant security
From Wayland Fixes to Security Boosts: Examining Qt 6.8.1
3 - 6 min read
The recent Qt 6.8.1 release brings significant updates and improvements, strengthening its reputation as a secure and reliable application
Exploring Arch Linux 2024.12.01: Security Implications & Notable Enhancements for Linux Admins
3 - 6 min read
The Arch Linux 2024.12.01 ISO release marks an impressive milestone, offering cutting-edge updates that enhance functionality, streamline
Deck the Halls with Enhanced Security: Linux Kernel 6.13
3 - 5 min read
As Linux admins and infosec professionals prepare for the holiday season, there's much cause for celebration this year! Linus Torvalds recently made
Lessons from Bootkitty: Securing Linux Systems Against UEFI Intrusions
3 - 5 min read
New Linux security threats mark critical junctures that challenge existing policies and test security protocols to their limit. One such milestone

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved