Upstream information
Description
MySQL 5.0.x before 5.0.51a, 5.1.x before 5.1.23, and 6.0.x before 6.0.4 does not update the DEFINER value of a view when the view is altered, which allows remote authenticated users to gain privileges via a sequence of statements including a CREATE SQL SECURITY DEFINER VIEW statement and an ALTER VIEW statement.NVD CVSS v2 Base Score: 3.5 (AV:N/AC:M/Au:S/C:N/I:P/A:N)
Novell/SUSE information
Novell Bugzilla entry: 348003 SUSE Security Advisories:- SUSE-SR:2008:003, published Thu, 07 Feb 2008 18:00:00 +0000
List of released packages
| Product(s) | Fixed package version(s) | References |
|---|---|---|
| Novell Linux Desktop 9 for x86 Novell Linux POS 9 Open Enterprise Server SUSE CORE 9 for AMD64 and Intel EM64T SUSE CORE 9 for IBM POWER SUSE CORE 9 for IBM S/390 31bit SUSE CORE 9 for IBM zSeries 64bit SUSE CORE 9 for Itanium Processor Family SUSE CORE 9 for x86 |
| core9.s390 sles10.s390x core9.x86 core9.s390 core9.x86 YOU Patch Nr: 12044 ZYPP Patch Nr: 4879 |
| SUSE Linux Enterprise Desktop 10 SP1 for x86 |
| core9.s390 sles10.s390x core9.x86 core9.s390 core9.x86 YOU Patch Nr: 12044 ZYPP Patch Nr: 4879 |
| SUSE Linux Enterprise Desktop 10 SP1 for AMD64 and Intel EM64T |
| core9.s390 sles10.s390x core9.x86 core9.s390 core9.x86 YOU Patch Nr: 12044 ZYPP Patch Nr: 4879 |
| SLE SDK 10 SP1 for x86 |
| core9.s390 sles10.s390x core9.x86 core9.s390 core9.x86 YOU Patch Nr: 12044 ZYPP Patch Nr: 4879 |
| SLE SDK 10 SP1 for IPF |
| core9.s390 sles10.s390x core9.x86 core9.s390 core9.x86 YOU Patch Nr: 12044 ZYPP Patch Nr: 4879 |
| SLE SDK 10 SP1 for IBM iSeries and IBM pSeries |
| core9.s390 sles10.s390x core9.x86 core9.s390 core9.x86 YOU Patch Nr: 12044 ZYPP Patch Nr: 4879 |
| SLE SDK 10 SP1 for IBM zSeries SLE SDK 10 SP1 for X86-64 |
| core9.s390 sles10.s390x core9.x86 core9.s390 core9.x86 YOU Patch Nr: 12044 ZYPP Patch Nr: 4879 |
| SUSE Linux Enterprise Server 10 SP1 for x86 |
| core9.s390 sles10.s390x core9.x86 core9.s390 core9.x86 YOU Patch Nr: 12044 ZYPP Patch Nr: 4879 |
| SUSE Linux Enterprise Server 10 SP1 for IPF |
| core9.s390 sles10.s390x core9.x86 core9.s390 core9.x86 YOU Patch Nr: 12044 ZYPP Patch Nr: 4879 |
| SUSE Linux Enterprise Server 10 SP1 for IBM POWER |
| core9.s390 sles10.s390x core9.x86 core9.s390 core9.x86 YOU Patch Nr: 12044 ZYPP Patch Nr: 4879 |
| SUSE Linux Enterprise Server 10 SP1 for AMD64 and Intel EM64T SUSE Linux Enterprise Server 10 SP1 for IBM zSeries 64bit |
| core9.s390 sles10.s390x core9.x86 core9.s390 core9.x86 YOU Patch Nr: 12044 ZYPP Patch Nr: 4879 |
| Novell Linux Desktop 9 for x86_64 |
| core9.s390 sles10.s390x core9.x86 core9.s390 core9.x86 YOU Patch Nr: 12044 ZYPP Patch Nr: 4879 |
| SLES SDK 9 for IBM S/390 and IBM zSeries SLES SDK 9 for IBM iSeries and IBM pSeries SLES SDK 9 for IBM zSeries SLES SDK 9 for IPF SLES SDK 9 for X86-64 SLES SDK 9 for x86 |
| core9.s390 sles10.s390x core9.x86 core9.s390 core9.x86 YOU Patch Nr: 12044 ZYPP Patch Nr: 4879 |
| SUSE LINUX 10.1 |
| |
| openSUSE 10.2 |
| |
| openSUSE 10.3 |
|