Mailinglisten-Archive

Fw: [SuSE] Schwachstelle in MySQL

Archiv Mailingliste mysql-de

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Fw: [SuSE] Schwachstelle in MySQL

Subject: Fw: [SuSE] Schwachstelle in MySQL
From: "gstammw" <gstammw_(at)_gmx.net>
Date: Wed, 26 Jan 2000 16:44:54 +0100
Content-Transfer-Encoding: 7bit
Old-Return-Path: <gstammw_(at)_gmx.net>
Reply-To: mysql-de_(at)_lists.4t2.com

Habe ich gerade bekommen....

cu,
Gunther
----- Original Message -----
From: <win-sec-ssc_(at)_cert.dfn.de>
To: <win-sec-ssc_(at)_cert.dfn.de>
Sent: Wednesday, January 26, 2000 9:18 AM
Subject: [SuSE] Schwachstelle in MySQL


> -----BEGIN PGP SIGNED MESSAGE-----
>
> Sehr geehrte Kolleginnen und Kollegen,
>
> Soeben erreichte uns nachfolgende Warnung des SuSE Security Teams
> ueber Sicherheitsprobleme im MySQL Datenbank Paket.
>
> Beschrieben wird eine Schwachstelle, durch die Datenbanknutzer mit dem
> GRANT Privileg das Superuser-Passwort der Datenbank aendern
> koennen. Per Default hat der User "test" dieses Privileg.
>
> Betroffen ist das MySQL-Paket bis Version 3.22.11-29. SuSE stellt
> gepatchte Versionen bereit.
>
> Wir geben diese Informationen unveraendert an Sie weiter.
>
> Mit freundlichen Gruessen,
> Klaus Moeller, DFN-CERT
>
> - --
> Klaus Moeller            |                    mailto:moeller_(at)_cert.dfn.de
> DFN-CERT GmbH            |
> Vogt-Koelln-Str. 30      |                      Phone: +49(40)42883-2262
> D-22527 Hamburg          |                        FAX: +49(40)42883-2241
> Germany                  |       PGP-Key: finger moeller_(at)_ftp.cert.dfn.de
>
> - -----BEGIN PGP SIGNED MESSAGE-----
>
>
____________________________________________________________________________
_
>
>                         SuSE Security Announcement
>
>         Package:  MySQL 3.22.11-29
>         Date:     Mon Jan 17 13:50:37 CET 2000
>
>         Affected SuSE versions: 6.1 - 6.3
>         Vulnerability Type:     change MySQL superuser password
>         SuSE default package:   no
>         Other affected systems: all unix systems using MySQL
>
____________________________________________________________________________
__
>
> A security hole was discovered in the package mentioned above.
> Please update as soon as possible or disable the service if you are using
> this software on your SuSE Linux installation(s).
>
> Other Linux distributions or operating systems might be affected as
> well, please contact your vendor for information about this issue.
>
> Please note that we provide this information on an "as-is" basis only.
> There is no warranty whatsoever and no liability for any direct, indirect
or
> incidental damage arising from this information or the installation of
> the update package.
>
____________________________________________________________________________
_
>
> 1. Problem Description
>
>   MySQL does not properly check privileges, so it's possible for any
>   MySQL user with GRANT privileges to change the MySQL super-
>   user password.
>
>   The MySQL install process creates a 'test' user, which has GRANT
>   privileges and no password by default.
>
> 2. Impact
>
>   A malicious MySQL user can change the MySQL superuser password.
>   By default, the MySQL superuser can only connect to the database from
>   the localhost, so a remote attacker is just able to perform a denial-of-
>   service attack.
>
> 3. Solution
>
>   Update the package from our FTP server.
>
>
____________________________________________________________________________
__
>
> Please verify these md5 checksums of the updates before installing:
>
>   31d42809423c91c07eeeb2cb0e2629ac  mysql-3.22.25-8.alpha.rpm     (6.1,
AXP)
>   c4d22921a5d8e49b406daabc72617d5d  mysqldev-3.22.25-8.alpha.rpm  (6.1,
AXP)
>   122cf7ee955630523e3a2679370dc9b3  mysql-3.22.30-0.alpha.rpm     (6.3,
AXP)
>   405c2d4ff5e1d506ca674e8472fddff3  mysqldev-3.22.30-0.alpha.rpm  (6.3,
AXP)
>   fcc11dda6b2458454e811726f8974182  mysql-3.22.30-1.i386.rpm      (6.2,
i386)
>   dbce19df0dd23f0aeb1bc32305e11798  mysqldev-3.22.30-1.i386.rpm   (6.2,
i386)
>   972a27218616d424ba97e8abd7f645b1  mysql-3.22.30-0.i386.rpm      (6.3,
i386)
>   0df4b3a5eaff7519c314e125da65297f  mysqldev-3.22.30-0.i386.rpm   (6.3,
i386)
>
>
>
____________________________________________________________________________
__
>
> You can find updates on our ftp-Server:
>
>
ftp://ftp.suse.com/pub/suse/axp/update/6.1/pay1/mysql-3.22.25-8.alpha.rpm
>
ftp://ftp.suse.com/pub/suse/axp/update/6.1/pay1/mysqldev-3.22.25-8.alpha.rpm
>
ftp://ftp.suse.com/pub/suse/axp/update/6.3/pay1/mysql-3.22.30-0.alpha.rpm
>
ftp://ftp.suse.com/pub/suse/axp/update/6.3/pay1/mysqldev-3.22.30-0.alpha.rpm
>
ftp://ftp.suse.com/pub/suse/i386/update/6.2/pay1/mysql-3.22.30-1.i386.rpm
>
ftp://ftp.suse.com/pub/suse/i386/update/6.2/pay1/mysqldev-3.22.30-1.i386.rpm
>
ftp://ftp.suse.com/pub/suse/i386/update/6.3/pay1/mysql-3.22.30-0.i386.rpm
>
> or try the following web pages for a list of mirrors:
>   http://www.suse.de/de/support/download/ftp/inland.html
>   http://www.suse.de/de/support/download/ftp/ausland.html
> or
>   http://www.suse.de/en/support/download/ftp/germ_mirrors.html
>   http://www.suse.de/en/support/download/ftp/int_mirrors.html
>
> Our webpage for patches:
>   http://www.suse.de/de/support/download/updates/index.html
> or
>   http://www.suse.de/en/support/download/updates/index.html
>
> Our webpage for security announcements:
>   http://www.suse.de/security
>
> If you want to report vulnerabilities, please contact
>   security_(at)_suse.de
>
____________________________________________________________________________
__
>
> SuSE has got two free security mailing list services to which any
> interested party may subscribe:
>
> suse-security_(at)_suse.com          - moderated and for general/linux/SuSE
>                                   security discussions. All SuSE security
>                                   announcements are sent to this list.
>
> suse-security-announce_(at)_suse.com - SuSE's announce-only mailing list.
>                                   Only SuSE's security announcements are
sent
>                                   to this list.
>
> To subscribe to the list, send a message to:
>      <suse-security-subscribe_(at)_suse.com>
>
> To remove your address from the list, send a message to:
>      <suse-security-unsubscribe_(at)_suse.com>
>
> Send mail to the following for info and FAQ for this list:
>      <suse-security-info_(at)_suse.com>
>      <suse-security-faq_(at)_suse.com>
>
>
____________________________________________________________________________
_
>
>   This information is provided freely to everyone interested and may
>   be redistributed provided that it is not altered in any way.
>
> Type Bits/KeyID    Date       User ID
> pub  2048/3D25D3D9 1999/03/06 SuSE Security Team <security_(at)_suse.de>
>
> - - ------BEGIN PGP PUBLIC KEY BLOCK-----
> Version: 2.6.3i
>
> mQENAzbhLQQAAAEIAKAkXHe0lWRBXLpn38hMHy03F0I4Sszmoc8aaKJrhfhyMlOA
> BqvklPLE2f9UrI4Xc860gH79ZREwAgPt0pi6+SleNFLNcNFAuuHMLQOOsaMFatbz
> JR9i4m/lf6q929YROu5zB48rBAlcfTm+IBbijaEdnqpwGib45wE/Cfy6FAttBHQh
> 1Kp+r/jPbf1mYAvljUfHKuvbg8t2EIQz/5yGp+n5trn9pElfQO2cRBq8LFpf1l+U
> P7EKjFmlOq+Gs/fF98/dP3DfniSd78LQPq5vp8RL8nr/o2i7jkAQ33m4f1wOBWd+
> cZovrKXYlXiR+Bf7m2hpZo+/sAzhd7LmAD0l09kABRG0JVN1U0UgU2VjdXJpdHkg
> VGVhbSA8c2VjdXJpdHlAc3VzZS5kZT6JARUDBRA24S1H5Fiyh7HKPEUBAVcOB/9b
> yHYji1/+4Xc2GhvXK0FSJN0MGgeXgW47yxDL7gmR4mNgjlIOUHZj0PEpVjWepOJ7
> tQS3L9oP6cpj1Fj/XxuLbkp5VCQ61hpt54coQAvYrnT9rtWEGN+xmwejT1WmYmDJ
> xG+EGBXKr+XP69oIUl1E2JO3rXeklulgjqRKos4cdXKgyjWZ7CP9V9daRXDtje63
> Om8gwSdU/nCvhdRIWp/Vwbf7Ia8iZr9OJ5YuQl0DBG4qmGDDrvImgPAFkYFzwlqo
> choXFQ9y0YVCV41DnR+GYhwl2qBd81T8aXhihEGPIgaw3g8gd8B5o6mPVgl+nJqI
> BkEYGBusiag2pS6qwznZiQEVAwUQNuEtBHey5gA9JdPZAQFtOAf+KVh939b0J94u
> v/kpg4xs1LthlhquhbHcKNoVTNspugiC3qMPyvSX4XcBr2PC0cVkS4Z9PY9iCfT+
> x9WM96g39dAF+le2CCx7XISk9XXJ4ApEy5g4AuK7NYgAJd39PPbERgWnxjxir9g0
> Ix30dS30bW39D+3NPU5Ho9TD/B7UDFvYT5AWHl3MGwo3a1RhTs6sfgL7yQ3U+mvq
> MkTExZb5mfN1FeaYKMopoI4VpzNVeGxQWIz67VjJHVyUlF20ekOz4kWVgsxkc8G2
> saqZd6yv2EwqYTi8BDAduweP33KrQc4KDDommQNDOXxaKOeCoESIdM4p7Esdjq1o
> L0oixF12Cg==
> =pIeS
> - - ------END PGP PUBLIC KEY BLOCK-----
>
> - -----BEGIN PGP SIGNATURE-----
> Version: 2.6.3i
> Charset: noconv
>
> iQEVAwUBOI4JbXey5gA9JdPZAQHgywf+Mg5H52Upl33ZGozIbOIIfy4p/jYBvxs9
> 5d1ie9lwQ1W9m05782ySYq5Nd92SrZuoe0zGMooEscGqN/GwLK22NlgSGszzjKfk
> PeffdROqWGfBxf4oPZr3RJdc6ki4c2y0Q9EJ5jDEeFTO548KxwgKY0l3WWylrIyz
> lty3A3KslFYJf8cGHSDGB4f/FVpoDGy0SEGuP00szc678RufCHPSG+4xBOo6efAH
> weccvQ2sDSWd5833lfQbc0v4jL/2tv0JAO2e8j9FevrKLd9YQMQ8YwBCnW2kI0uL
> zo/hUcvv+2QR2mlwUgSnYcgRrPfz15s+kL/T/0AgKGgkHQMjIDYJ3Q==
> =iMeE
> - -----END PGP SIGNATURE-----
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: 2.6.2i
> Comment: Processed by Mailcrypt 3.4, an Emacs/PGP interface
>
> iQEVAwUBOI6pmIrEggYLt8j5AQETsAf/QEf+kLQaLdDxzUqRNWCYFs1/qCTzuw6H
> /rnHhhylN6d3+3o5XZrC4UHYHd8kh6Dw7dmRbWCiX4V+1t0TzeYyFh2HQ2Uyb5bh
> UeSqoG4QBI+LVIfVsbG40VdcSmbP1rZo7J5NTlBTTqV1lX4zSCY9Ygad34BtWjNr
> b/bkUnb3XF8rJoDuc2IMiOR9Rw8eziUmqmW7JRRI7qIBS0zMzsn2QZZ/eyu/0BKd
> K9Big9XAGaMAhNAHLF4sYvkJt7GcOH8VCMlQP2jcjqiuy3qvLK+xH6P14qFhFPCp
> fuoRA9e0wO12oHG6wN04XIjTOGOel9C8Y027+5mnrQV8/ZF8cYuEIg==
> =Sk7g
> -----END PGP SIGNATURE-----
>

---
*** Abmelden von dieser Mailingliste funktioniert per E-Mail
*** an mysql-de-request_(at)_lists.4t2.com mit Betreff/Subject: unsubscribe

Follow-Ups:
- Re: [SuSE] Schwachstelle in MySQL
  - From: "Jannis Hermanns, I-D Media" <jannis.hermanns_(at)_i-dmedia.com>
- Re: wamp will nicht laufen
  - From: "Gerwin FAIS" <gerwin.fais_(at)_wanadoo.fr>

Prev by Date: Re: AW: Gleichzeitiger Zugriff auf Mysql im WIN-Netz makes trouble
Next by Date: Re: [SuSE] Schwachstelle in MySQL
Prev by thread: Re: Gleichzeitiger Zugriff auf Mysql im WIN-Netz makes trouble
Next by thread: Re: [SuSE] Schwachstelle in MySQL
Index(es):
- Date
- Thread

Home | Main Index | Thread Index

php::bar PHP Wiki - Listenarchive