Ranjivost programskog paketa MySQL

U radu programskog paketa MySQL uočena je nova sigurnosna ranjivost. Udaljenim napadačima omogućuje izvođenje DoS napada.

Paket:	mysql 5.x
Operacijski sustavi:	CentOS
Problem:	pogreška u programskoj komponenti
Iskorištavanje:	udaljeno
Posljedica:	uskraćivanje usluga (DoS)
Rješenje:	programska zakrpa proizvođača
CVE:	CVE-2012-2102
Izvorni ID preporuke:	2012:0874
Izvor:	CentOS

Problem:
Ranjivost je posljedica pogreške u obradi HANDLER READ NEXT izjava nakon brisanja zapisa.
Posljedica:
Napadač ju može iskoristiti za izvođenje DoS napada (rušenje aplikacije).
Rješenje:
Svim se korisnicima preporuča instalacija nadogradnje.

Izvorni tekst preporuke

CentOS Errata and Security Advisory 2012:0874 Low

Upstream details at : https://rhn.redhat.com/errata/RHSA-2012-0874.html

The following updated files have been uploaded and are currently 
syncing to the mirrors: ( sha256sum Filename ) 


i386:
1af7df5c6b5e0b863ccee5270687ce46d8659db358648fe18faa41f27988e2ec 
mysql-5.1.61-4.el6.i686.rpm
dff44f8d0c1add15aa01901b6f8abd8147f9e4bedfb5bcbdc94c5c2af8593a11 
mysql-bench-5.1.61-4.el6.i686.rpm
52f29a30e6d008c43d3d42a621666e714f6951fee7f1a015140921e11e45d386 
mysql-devel-5.1.61-4.el6.i686.rpm
60c8725286a056109703026fc98feaf03933beb6732e28482e09fa8f4fb20ceb 
mysql-embedded-5.1.61-4.el6.i686.rpm
20010f9f357a62c09f8d020aae58e412f78c0d527891b7d5962318a5a229a6fe 
mysql-embedded-devel-5.1.61-4.el6.i686.rpm
bcc4352ecdea8bc3b7a53d761585f89b7f232c442c581b7f7b4ee5f11a6739cf 
mysql-libs-5.1.61-4.el6.i686.rpm
b8faf32f86d418cbf57bd7f93d835ba06b1bb49dee080f787ffdf6608712e52e 
mysql-server-5.1.61-4.el6.i686.rpm
bb90df0e3f5397e256646455d6b84866c91683b2079cc412a03585bbe124d777 
mysql-test-5.1.61-4.el6.i686.rpm

x86_64:
6b73a923d178f1fda0e864ffc217c404b7b2841ff895bfdbd256bf5c2be2323e 
mysql-5.1.61-4.el6.x86_64.rpm
38da91f313ae98f0ee79240ca2e690c70e27e0bf6a3d7afdf80e6637ea38c3c8 
mysql-bench-5.1.61-4.el6.x86_64.rpm
052b6e1a6a2b79156ca6a6951bf688ef7f7be26c8233c57f08daee389dcbdb63 
mysql-devel-5.1.61-4.el6.i686.rpm
4f40f6d39573a71a143487356be4e41fe48ee035613d8c4abb7771d4caa22eb8 
mysql-devel-5.1.61-4.el6.x86_64.rpm
24c92f9c2876088da5e5a565b40cb601b5ad1b24a2d85c5a567fd09187495b46 
mysql-embedded-5.1.61-4.el6.i686.rpm
ea33da23aa58f0ab38cc0cd509a7b182813593256b13373a25794ec51cf68999 
mysql-embedded-5.1.61-4.el6.x86_64.rpm
70d9733805816c2ebb8405dd2a9c1c448d537805bd8a20d172b7adfde994909a 
mysql-embedded-devel-5.1.61-4.el6.i686.rpm
93b4d1fd1ef2ea036e53ef82f3cca4ed4a51f05e35469f62e1a9d18bbdcf7dd4 
mysql-embedded-devel-5.1.61-4.el6.x86_64.rpm
a66ec490bce311dab063fba6e6034a670ececd3b80adfd87ec0acb2be52c66b1 
mysql-libs-5.1.61-4.el6.i686.rpm
c33c20311f2515198a339d96cddbf81b2d3f377c69836594d32f48cb22147fc0 
mysql-libs-5.1.61-4.el6.x86_64.rpm
c62dbf4112603d50bc086eb779951758a6d3524758aac5965712892b6c3e749d 
mysql-server-5.1.61-4.el6.x86_64.rpm
ac706aa54007a782802fc794b5947d5e80e5cee49bf95c522c8a5cc967088cfa 
mysql-test-5.1.61-4.el6.x86_64.rpm

Source:
e13afa6f83e66547e0075b8fd95e29c792e068bec8a8d1693c2f549f4efba932 
mysql-5.1.61-4.el6.src.rpm



-- 
Johnny Hughes
CentOS Project { http://www.centos.org/ }
irc: hughesjr, #Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.

_______________________________________________
CentOS-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
http://lists.centos.org/mailman/listinfo/centos-announce

Ranjivost programskog paketa MySQL

Tražilica portala

Aktivnosti

O CIS-u

Posljednje vijesti

Posljednji dokumenti

Ranjivost programskog paketa MySQL

Tražilica portala

Aktivnosti

O CIS-u

Posljednje sigurnosne preporuke

Posljednje vijesti

Popularni članci

Posljednji dokumenti