lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list]
Message-Id: <E1UULJQ-00066F-HO@titan.mandriva.com>
Date: Mon, 22 Apr 2013 20:18:00 +0200
From: security@...driva.com
To: full-disclosure@...ts.grok.org.uk
Subject: [ MDVSA-2013:150 ] mysql

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________

 Mandriva Linux Security Advisory                         MDVSA-2013:150
 http://www.mandriva.com/en/support/security/
 _______________________________________________________________________

 Package : mysql
 Date    : April 22, 2013
 Affected: Enterprise Server 5.0
 _______________________________________________________________________

 Problem Description:

 Multiple unspecified vulnerabilites has been found and corrected
 in mysql. Please read the Oracle Critical Patch Updates pages for
 further information.
 
 The updated packages provides the latest supported mysql version from
 the 5.1.x branch (5.1.69).
 
 Additionally the mysql 5.0 client libraries is also being provided
 to maintain compability where needed.
 _______________________________________________________________________

 References:

 http://dev.mysql.com/doc/relnotes/mysql/5.0/en/
 http://dev.mysql.com/doc/relnotes/mysql/5.1/en/news-5-1-69.html
 http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html
 http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
 http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html
 http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html
 http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html
 _______________________________________________________________________

 Updated Packages:

 Mandriva Enterprise Server 5:
 3c5ef96135c69ba3d666743d0ae2e316  mes5/i586/libmysql15-5.0.96-0.3mdvmes5.2.i586.rpm
 d9cbf2973147db8e6be60afb6c02b1f6  mes5/i586/libmysql16-5.1.69-0.1mdvmes5.2.i586.rpm
 ef72107a403a44806f5e0ae6b2ea7db4  mes5/i586/libmysql-devel-5.1.69-0.1mdvmes5.2.i586.rpm
 b1ca5d0960c19a14fba36d12591b21db  mes5/i586/libmysql-static-devel-5.1.69-0.1mdvmes5.2.i586.rpm
 fbca1d773eb975b280c3d748157f773e  mes5/i586/mysql-5.1.69-0.1mdvmes5.2.i586.rpm
 94e56945c434f514cb5cf64ff86eb5e8  mes5/i586/mysql-bench-5.1.69-0.1mdvmes5.2.i586.rpm
 a2af1bd73d8cc68eedf275db734a379d  mes5/i586/mysql-client-5.1.69-0.1mdvmes5.2.i586.rpm
 388411dceb3d57968f75dba6d9e476db  mes5/i586/mysql-common-5.1.69-0.1mdvmes5.2.i586.rpm 
 23e98cdf455fddd37587ac582441ee08  mes5/SRPMS/mysql-5.1.69-0.1mdvmes5.2.src.rpm
 e440c2744357a2c1b79c85c7015e0ef7  mes5/SRPMS/mysqlclient15-5.0.96-0.3mdvmes5.2.src.rpm

 Mandriva Enterprise Server 5/X86_64:
 6a6fe702f3593a3c3171ed6c5bbb1d52  mes5/x86_64/lib64mysql15-5.0.96-0.3mdvmes5.2.x86_64.rpm
 af3491b49b6f357a2034ebe30b5589bc  mes5/x86_64/lib64mysql16-5.1.69-0.1mdvmes5.2.x86_64.rpm
 876440d008f0327f408963835a9ced10  mes5/x86_64/lib64mysql-devel-5.1.69-0.1mdvmes5.2.x86_64.rpm
 bf1bbed9c4ba3de56074e0e22f63d09c  mes5/x86_64/lib64mysql-static-devel-5.1.69-0.1mdvmes5.2.x86_64.rpm
 7a600827564a9958a5ee0722c363ad63  mes5/x86_64/mysql-5.1.69-0.1mdvmes5.2.x86_64.rpm
 c51421f879d08ad492540863c3b811af  mes5/x86_64/mysql-bench-5.1.69-0.1mdvmes5.2.x86_64.rpm
 722db0a50caa18606250db7697aec190  mes5/x86_64/mysql-client-5.1.69-0.1mdvmes5.2.x86_64.rpm
 e8a737f6164514a54caaea96b4b9c47b  mes5/x86_64/mysql-common-5.1.69-0.1mdvmes5.2.x86_64.rpm 
 23e98cdf455fddd37587ac582441ee08  mes5/SRPMS/mysql-5.1.69-0.1mdvmes5.2.src.rpm
 e440c2744357a2c1b79c85c7015e0ef7  mes5/SRPMS/mysqlclient15-5.0.96-0.3mdvmes5.2.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/en/support/security/advisories/

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  <security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iD8DBQFRdVNAmqjQ0CJFipgRApl9AKCh1nSgppWoQZvpP/+EKlnkqjVgaQCePyOf
Y0n/P3z2aUQl4jFoxL2xRcE=
=wm+a
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ