-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2010-02-22 16:29:37 UTC
-
Revision ID:
james.westby@ubuntu.com-20100222162937-lvj5tpszlw3iukef
Tags: 5.1.41-3ubuntu7
* SECURITY UPDATE: privilege restriction bypass via incorrect calculation
of the mysql_unpacked_real_data_home value
- debian/patches/52_CVE-2009-4030.dpatch: fix initialization order in
sql/mysqld.cc.
- CVE-2009-4030
* SECURITY UPDATE: arbitrary code execution via yassl stack overflow
- debian/patches/53_CVE-2009-4484.dpatch: validate lengths in
extra/yassl/taocrypt/src/asn.*.
- CVE-2009-4484
* SECURITY UPDATE: access restriction bypass via symlink
- debian/patches/54_CVE-2008-7247.dpatch: improve symlink handling in
sql/sql_table.cc.
- CVE-2008-7247