| Description: |
From the CVE entry:
sql/sql_table.cc in MySQL 5.0.x through 5.0.88, 5.1.x through 5.1.41, and 6.0 before 6.0.9-alpha, when the data home directory contains a symlink to a different filesystem, allows remote authenticated users to bypass intended access restrictions by calling CREATE TABLE with a (1) DATA DIRECTORY or (2) INDEX DIRECTORY argument referring to a subdirectory that requires following this symlink. |
| Alerts: |
| Ubuntu |
USN-1397-1 |
mysql-5.1, mysql-dfsg-5.0, mysql-dfsg-5.1 |
2012-03-12 |
| Gentoo |
201201-02 |
mysql |
2012-01-05 |
| SUSE |
SUSE-SR:2010:021 |
mysql, dhcp, monotone, moodle, openssl |
2010-11-16 |
| Pardus |
2010-73 |
mysql-server |
2010-06-04 |
| SuSE |
SUSE-SR:2010:011 |
dovecot12, cacti, java-1_6_0-openjdk, irssi, tar, fuse, apache2, libmysqlclient-devel, cpio, moodle, libmikmod, libicecore, evolution-data-server, libpng/libpng-devel, libesmtp |
2010-05-10 |
| SuSE |
SUSE-SR:2010:007 |
cifs-mount/samba, compiz-fusion-plugins-main, cron, cups, ethereal/wireshark, krb5, mysql, pulseaudio, squid/squid3, viewvc |
2010-03-30 |
| Mandriva |
MDVSA-2010:044 |
mysql |
2010-02-19 |
| Pardus |
2010-29 |
mysql-server |
2010-02-09 |
| Ubuntu |
USN-897-1 |
mysql-dfsg-5.0, mysql-dfsg-5.1 |
2010-02-10 |
| Fedora |
FEDORA-2010-1348 |
mysql |
2010-02-02 |
| Fedora |
FEDORA-2010-1300 |
mysql |
2010-02-02 |
|
