drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Pufferüberlauf in mysql
Name: |
Pufferüberlauf in mysql |
|
ID: |
FEDORA-2012-19833 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 17 |
|
Datum: |
So, 16. Dezember 2012, 10:42 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5611 |
|
Applikationen: |
MySQL |
|
Originalnachricht |
Name : mysql Product : Fedora 17 Version : 5.5.28 Release : 2.fc17 URL : http://www.mysql.com Summary : MySQL client programs and shared libraries Description : MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon (mysqld) and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files.
------------------------------------------------------------------------------- - Update Information:
- Add patch for CVE-2012-5611
- Widen DH key length from 512 to 1024 bits to meet minimum requirements of FIPS 140-2 ------------------------------------------------------------------------------- - ChangeLog:
* Wed Dec 5 2012 Tom Lane <tgl@redhat.com> 5.5.28-2 - Add patch for CVE-2012-5611 Resolves: #883642 - Widen DH key length from 512 to 1024 bits to meet minimum requirements of FIPS 140-2 Related: #877124 * Sat Sep 29 2012 Tom Lane <tgl@redhat.com> 5.5.28-1 - Update to MySQL 5.5.28, for various fixes described at http://dev.mysql.com/doc/refman/5.5/en/news-5-5-28.html - Clean up partially-created database files when mysql_install_db fails Related: #835131 - Honor user and group settings from service file in mysqld-prepare-db-dir Resolves: #840431 - Export THR_KEY_mysys as a workaround for inadequate threading support Resolves: #846602 - Adopt new systemd macros for server package install/uninstall triggers Resolves: #850222 - Use --no-defaults when invoking mysqladmin to wait for the server to start Related: #855704 * Sun Aug 5 2012 Tom Lane <tgl@redhat.com> 5.5.27-1 - Update to MySQL 5.5.27, for various fixes described at http://dev.mysql.com/doc/refman/5.5/en/news-5-5-27.html * Fri Jul 6 2012 Tom Lane <tgl@redhat.com> 5.5.25a-1 - Update to MySQL 5.5.25a, for various fixes described at http://dev.mysql.com/doc/refman/5.5/en/news-5-5-25a.html http://dev.mysql.com/doc/refman/5.5/en/news-5-5-25.html - Don't use systemd's Restart feature; rely on mysqld_safe instead Resolves: #832029 * Mon Jun 11 2012 Tom Lane <tgl@redhat.com> 5.5.24-1 - Update to MySQL 5.5.24, for various fixes described at http://dev.mysql.com/doc/refman/5.5/en/news-5-5-24.html including the fix for CVE-2012-2122 Resolves: #830680 - Tweak logrotate script to put the right permissions on mysqld.log - Minor specfile fixes for recent packaging guidelines changes ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #881064 - CVE-2012-5611 mysql: acl_get() stack-based buffer overflow https://bugzilla.redhat.com/show_bug.cgi?id=881064 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update mysql' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|