Mandrake Local Security Checks : Mandriva Security Advisory MDVSA-2010:101 (mysql)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.67428

Categoría: Mandrake Local Security Checks

Título: Mandriva Security Advisory MDVSA-2010:101 (mysql)

Resumen: NOSUMMARY

Descripción: Description:
The remote host is missing an update to mysql
announced via advisory MDVSA-2010:101.

A vulnerability has been found and corrected in mysql:

It was possible for DROP TABLE of one MyISAM table to remove the
data and index files of a different MyISAM table (CVE-2010-1626).

Packages for 2008.0 and 2009.0 are provided due to the Extended
Maintenance Program for those products.

The updated packages have been patched to correct this issue.

Affected: 2008.0, 2009.0, 2009.1, 2010.0, Corporate 4.0,
Enterprise Server 5.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2010:101
http://bugs.mysql.com/bug.php?id=40980

Risk factor : Medium

CVSS Score:
3.6

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-1626
1024004
http://securitytracker.com/id?1024004
40257
http://www.securityfocus.com/bid/40257
ADV-2010-1194
http://www.vupen.com/english/advisories/2010/1194
MDVSA-2010:101
http://www.mandriva.com/security/advisories?name=MDVSA-2010:101
RHSA-2010:0442
http://www.redhat.com/support/errata/RHSA-2010-0442.html
SUSE-SR:2010:019
http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html
SUSE-SR:2010:021
http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html
USN-1397-1
http://www.ubuntu.com/usn/USN-1397-1
[oss-security] 20100510 Re: A mysql flaw.
http://www.openwall.com/lists/oss-security/2010/05/10/2
[oss-security] 20100518 Re: A mysql flaw.
http://www.openwall.com/lists/oss-security/2010/05/18/4
http://bugs.mysql.com/bug.php?id=40980
oval:org.mitre.oval:def:9490
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9490

Copyright Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.67428
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Security Advisory MDVSA-2010:101 (mysql)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to mysql announced via advisory MDVSA-2010:101. A vulnerability has been found and corrected in mysql: It was possible for DROP TABLE of one MyISAM table to remove the data and index files of a different MyISAM table (CVE-2010-1626). Packages for 2008.0 and 2009.0 are provided due to the Extended Maintenance Program for those products. The updated packages have been patched to correct this issue. Affected: 2008.0, 2009.0, 2009.1, 2010.0, Corporate 4.0, Enterprise Server 5.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2010:101 http://bugs.mysql.com/bug.php?id=40980 Risk factor : Medium CVSS Score: 3.6
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-1626 1024004 http://securitytracker.com/id?1024004 40257 http://www.securityfocus.com/bid/40257 ADV-2010-1194 http://www.vupen.com/english/advisories/2010/1194 MDVSA-2010:101 http://www.mandriva.com/security/advisories?name=MDVSA-2010:101 RHSA-2010:0442 http://www.redhat.com/support/errata/RHSA-2010-0442.html SUSE-SR:2010:019 http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html SUSE-SR:2010:021 http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html USN-1397-1 http://www.ubuntu.com/usn/USN-1397-1 [oss-security] 20100510 Re: A mysql flaw. http://www.openwall.com/lists/oss-security/2010/05/10/2 [oss-security] 20100518 Re: A mysql flaw. http://www.openwall.com/lists/oss-security/2010/05/18/4 http://bugs.mysql.com/bug.php?id=40980 oval:org.mitre.oval:def:9490 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9490
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com