Login

Noch kein Login?
Daten vergessen?

 
Newsletter
Werbung
Sicherheit: Mehrere Probleme in MySQL
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme in MySQL
ID: USN-1397-1
Distribution: Ubuntu
Plattformen: Ubuntu 8.04 LTS, Ubuntu 10.04 LTS, Ubuntu 10.10, Ubuntu 11.04, Ubuntu 11.10
Datum: Mo, 12. März 2012, 16:47
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5925
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3963
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4098
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4456
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-7247
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2446
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4019
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4030
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4484
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1621
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1626
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1848
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1849
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1850
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2008
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3677
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3678
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3679
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3680
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3681
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3682
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3683
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3833
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3834
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3835
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3836
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3837
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3838
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3839
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3840
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2262
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0075
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0087
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0101
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0102
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0112
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0113
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0114
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0115
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0116
http://dev.mysql.com/doc/refman/5.0/en/news-5-0-x.html
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-x.html
http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html

Originalnachricht

 

--===============2720974885197899771==
Content-Type: multipart/signed; micalg="pgp-sha512";
	protocol="application/pgp-signature";
 boundary="=-iyzmeWv1ZTe/zIxgbGix"


--=-iyzmeWv1ZTe/zIxgbGix
Content-Type: text/plain; charset="UTF-8
Content-Transfer-Encoding: quoted-printable

==========================================================================
Ubuntu Security Notice USN-1397-1
March 12, 2012

mysql-5.1, mysql-dfsg-5.0, mysql-dfsg-5.1 vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 11.10
- Ubuntu 11.04
- Ubuntu 10.10
- Ubuntu 10.04 LTS
- Ubuntu 8.04 LTS

Summary:

Several security issues were fixed in MySQL.

Software Description:
- mysql-5.1: MySQL database
- mysql-dfsg-5.1: MySQL database
- mysql-dfsg-5.0: MySQL database

Details:

Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.

MySQL has been updated to 5.1.61 in Ubuntu 10.04 LTS, Ubuntu 10.10,
Ubuntu 11.04 and Ubuntu 11.10. Ubuntu 8.04 LTS has been updated to
MySQL 5.0.95.

In addition to security fixes, the updated packages contain bug fixes, new
features, and possibly incompatible changes.

Please see the following for more information:

http://dev.mysql.com/doc/refman/5.1/en/news-5-1-x.html
http://dev.mysql.com/doc/refman/5.0/en/news-5-0-x.html
http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 11.10:
  mysql-server-5.1                5.1.61-0ubuntu0.11.10.1

Ubuntu 11.04:
  mysql-server-5.1                5.1.61-0ubuntu0.11.04.1

Ubuntu 10.10:
  mysql-server-5.1                5.1.61-0ubuntu0.10.10.1

Ubuntu 10.04 LTS:
  mysql-server-5.1                5.1.61-0ubuntu0.10.04.1

Ubuntu 8.04 LTS:
  mysql-server-5.0                5.0.95-0ubuntu1

In general, a standard system update will make all the necessary changes.

References:
  http://www.ubuntu.com/usn/usn-1397-1
  CVE-2007-5925, CVE-2008-3963, CVE-2008-4098, CVE-2008-4456,
  CVE-2008-7247, CVE-2009-2446, CVE-2009-4019, CVE-2009-4030,
  CVE-2009-4484, CVE-2010-1621, CVE-2010-1626, CVE-2010-1848,
  CVE-2010-1849, CVE-2010-1850, CVE-2010-2008, CVE-2010-3677,
  CVE-2010-3678, CVE-2010-3679, CVE-2010-3680, CVE-2010-3681,
  CVE-2010-3682, CVE-2010-3683, CVE-2010-3833, CVE-2010-3834,
  CVE-2010-3835, CVE-2010-3836, CVE-2010-3837, CVE-2010-3838,
  CVE-2010-3839, CVE-2010-3840, CVE-2011-2262, CVE-2012-0075,
  CVE-2012-0087, CVE-2012-0101, CVE-2012-0102, CVE-2012-0112,
  CVE-2012-0113, CVE-2012-0114, CVE-2012-0115, CVE-2012-0116,

Package Information:
  https://launchpad.net/ubuntu/+source/mysql-5.1/5.1.61-0ubuntu0.11.10.1
  https://launchpad.net/ubuntu/+source/mysql-5.1/5.1.61-0ubuntu0.11.04.1
  https://launchpad.net/ubuntu/+source/mysql-5.1/5.1.61-0ubuntu0.10.10.1
  https://launchpad.net/ubuntu/+source/mysql-dfsg-5.1/5.1.61-0ubuntu0.10.04.1
  https://launchpad.net/ubuntu/+source/mysql-dfsg-5.0/5.0.95-0ubuntu1



--ÒyzmeWv1ZTe/zIxgbGix
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part
Content-Transfer-Encoding: 7bit

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
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=3jh9
-----END PGP SIGNATURE-----

--=-iyzmeWv1ZTe/zIxgbGix--



--===============2720974885197899771==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

-- 
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

--===============2720974885197899771==--
Pro-Linux
Gewinnspiel
Neue Nachrichten

0
Zend Framework 2.2.0 ver­spricht mehr Kon­sis­tenz

16
Firefox 22 aktiviert WebRTC

9
10 Jahre Groklaw

17
Kroatiens Prä­si­dent lobt den kreativen Geist der Open-Sour­ce Ge­mein­schaft

2
Sernet bietet Sam­ba4-Kom­plett­pa­ke­te für ver­schie­de­ne Dis­tri­bu­tio­nen

19
Linux: Si­cher­heits­lü­cke erlaubt Roo­t-Zu­griff

1
Ge­winn­spiel: Ein­tritts­kar­ten für den LinuxTag 2013

22
Neue An­dro­id-Ent­wick­lungs­um­ge­bung Android Studio

0
Open-IT Summit am 22. und 23. Mai auf dem LinuxTag

0
OpenAPC 3.0 mit Be­am­Con­struc­t-SDK
 
Werbung