U radu programskog paketa MySQL Cluster uočeno je nekoliko ranjivosti koje napadači mogu iskoristiti kako bi ugrozili dostupnost sustava.

______________________________________________________________________________
Announcement ID:    openSUSE-SU-2012:0617-1
Rating:             moderate
References:         675870,734436,742272,758460
Cross-References:   CVE-2009-5026,CVE-2012-0583,CVE-2012-1688,CVE-2012-1690,CVE-2012-1696,CVE-2012-1697,CVE-2012-1703
Affected Products:

openSUSE 12.1
openSUSE 11.4

______________________________________________________________________________

Description:

 MySQL Cluster 7.1.21 fixes several security issues and
bugs. Please refer to the following upstream announcement
for details:

http://dev.mysql.com/doc/refman/5.1/en/mysql-cluster-news-7-
1.html


Patch Instructions: 
   - openSUSE 12.1:

      zypper in -t patch openSUSE-2012-276

   - openSUSE 11.4:

      zypper in -t patch openSUSE-2012-276



Package List: 

   - openSUSE 12.1 (i586 x86_64):

      libmysqlclusterclient16-7.1.21-2.4.1
      libmysqlclusterclient16-debuginfo-7.1.21-2.4.1
      libmysqlclusterclient_r16-7.1.21-2.4.1
      libmysqlclusterclient_r16-debuginfo-7.1.21-2.4.1
      mysql-cluster-7.1.21-2.4.1
      mysql-cluster-bench-7.1.21-2.4.1
      mysql-cluster-bench-debuginfo-7.1.21-2.4.1
      mysql-cluster-client-7.1.21-2.4.1
      mysql-cluster-client-debuginfo-7.1.21-2.4.1
      mysql-cluster-debug-7.1.21-2.4.1
      mysql-cluster-debug-debuginfo-7.1.21-2.4.1
      mysql-cluster-debuginfo-7.1.21-2.4.1
      mysql-cluster-debugsource-7.1.21-2.4.1
      mysql-cluster-ndb-extra-7.1.21-2.4.1
      mysql-cluster-ndb-extra-debuginfo-7.1.21-2.4.1
      mysql-cluster-ndb-management-7.1.21-2.4.1
      mysql-cluster-ndb-management-debuginfo-7.1.21-2.4.1
      mysql-cluster-ndb-storage-7.1.21-2.4.1
      mysql-cluster-ndb-storage-debuginfo-7.1.21-2.4.1
      mysql-cluster-ndb-tools-7.1.21-2.4.1
      mysql-cluster-ndb-tools-debuginfo-7.1.21-2.4.1
      mysql-cluster-test-7.1.21-2.4.1
      mysql-cluster-test-debuginfo-7.1.21-2.4.1
      mysql-cluster-tools-7.1.21-2.4.1
      mysql-cluster-tools-debuginfo-7.1.21-2.4.1

   - openSUSE 11.4 (i586 x86_64):

      libmysqlclusterclient16-7.1.21-52.1
      libmysqlclusterclient16-debuginfo-7.1.21-52.1
      libmysqlclusterclient_r16-7.1.21-52.1
      libmysqlclusterclient_r16-debuginfo-7.1.21-52.1
      mysql-cluster-7.1.21-52.1
      mysql-cluster-bench-7.1.21-52.1
      mysql-cluster-bench-debuginfo-7.1.21-52.1
      mysql-cluster-client-7.1.21-52.1
      mysql-cluster-client-debuginfo-7.1.21-52.1
      mysql-cluster-debug-7.1.21-52.1
      mysql-cluster-debug-debuginfo-7.1.21-52.1
      mysql-cluster-debuginfo-7.1.21-52.1
      mysql-cluster-debugsource-7.1.21-52.1
      mysql-cluster-ndb-extra-7.1.21-52.1
      mysql-cluster-ndb-extra-debuginfo-7.1.21-52.1
      mysql-cluster-ndb-management-7.1.21-52.1
      mysql-cluster-ndb-management-debuginfo-7.1.21-52.1
      mysql-cluster-ndb-storage-7.1.21-52.1
      mysql-cluster-ndb-storage-debuginfo-7.1.21-52.1
      mysql-cluster-ndb-tools-7.1.21-52.1
      mysql-cluster-ndb-tools-debuginfo-7.1.21-52.1
      mysql-cluster-test-7.1.21-52.1
      mysql-cluster-test-debuginfo-7.1.21-52.1
      mysql-cluster-tools-7.1.21-52.1
      mysql-cluster-tools-debuginfo-7.1.21-52.1


References:

http://support.novell.com/security/cve/CVE-2009-5026.html
http://support.novell.com/security/cve/CVE-2012-0583.html
http://support.novell.com/security/cve/CVE-2012-1688.html
http://support.novell.com/security/cve/CVE-2012-1690.html
http://support.novell.com/security/cve/CVE-2012-1696.html
http://support.novell.com/security/cve/CVE-2012-1697.html
http://support.novell.com/security/cve/CVE-2012-1703.html
https://bugzilla.novell.com/675870
https://bugzilla.novell.com/734436
https://bugzilla.novell.com/742272
https://bugzilla.novell.com/758460