[El-errata] ELSA-2010-0110 Moderate: Enterprise Linux 4 mysql security update
Errata Announcements for Enterprise Linux
el-errata at oss.oracle.com
Tue Feb 16 18:29:39 PST 2010
Enterprise Linux Security Advisory ELSA-2010-0110
https://rhn.redhat.com/errata/RHSA-2010-0110.html
The following updated rpms for Enterprise Linux 4 have been uploaded to
the Unbreakable Linux Network:
i386:
mysql-4.1.22-2.el4_8.3.i386.rpm
mysql-bench-4.1.22-2.el4_8.3.i386.rpm
mysql-devel-4.1.22-2.el4_8.3.i386.rpm
mysql-server-4.1.22-2.el4_8.3.i386.rpm
x86_64:
mysql-4.1.22-2.el4_8.3.i386.rpm
mysql-4.1.22-2.el4_8.3.x86_64.rpm
mysql-bench-4.1.22-2.el4_8.3.x86_64.rpm
mysql-devel-4.1.22-2.el4_8.3.x86_64.rpm
mysql-server-4.1.22-2.el4_8.3.x86_64.rpm
ia64:
mysql-4.1.22-2.el4_8.3.i386.rpm
mysql-4.1.22-2.el4_8.3.ia64.rpm
mysql-bench-4.1.22-2.el4_8.3.ia64.rpm
mysql-devel-4.1.22-2.el4_8.3.ia64.rpm
mysql-server-4.1.22-2.el4_8.3.ia64.rpm
SRPMS:
http://oss.oracle.com/el4/SRPMS-updates/mysql-4.1.22-2.el4_8.3.src.rpm
Description of changes:
[4.1.22-2.el4.3]
- Add comment suggesting disabling symbolic links in /etc/my.cnf
[4.1.22-2.el4.2]
- Add fixes for CVE-2008-4098, CVE-2009-4030 (two successive attempts to fix
DATA/INDEX DIRECTORY vulnerabilities) and CVE-2008-4456 (mysql command
line
client XSS flaw)
Resolves: #512255
[4.1.22-2.el4.1]
- Add fix for CVE-2009-2446 (format string vulnerability in
COM_CREATE_DB and
COM_DROP_DB processing)
Resolves: #512255
More information about the El-errata
mailing list