Advisories MDKSA-2006:149: Updated MySQL packages fix user privilege vulnerabilities

[paul]

MySQL 4.1 before 4.1.21 and 5.0 before 5.0.24 allows a local user to

access a table through a previously created MERGE table, even after the

user's privileges are revoked for the original table, which might

violate intended security policy (CVE-2006-4031).

 

The update allows the local admin to override MERGE using the

'--skip-merge' option when running mysqld. This can be defined under

MYSQLD_OPTIONS in /etc/sysconfig/mysqld. If '--skip-merge' is not used,

the old behaviour of MERGE tables is still used.

 

MySQL 4.1 before 4.1.21, 5.0 before 5.0.25, and 5.1 before 5.1.12,

when run on case-sensitive filesystems, allows remote authenticated

users to create or access a database when the database name differs

only in case from a database for which they have permissions

(CVE-2006-4226).

 

Packages have been patched to correct these issues.