Bug 104890 - security/vuxml: Two MySQL vulnerability entries
Summary: security/vuxml: Two MySQL vulnerability entries
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Only Me
Assignee: Security Team
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2006-10-29 00:30 UTC by Henrik Brix Andersen
Modified: 2006-10-29 14:00 UTC (History)
1 user (show)

See Also:

Attachments
vuln.xml.diff (2.25 KB, patch)
2006-10-29 00:30 UTC, Henrik Brix Andersen 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Henrik Brix Andersen 2006-10-29 00:30:12 UTC 
Two recent MySQL server vulnerabilities (CVE-2006-4227 and
CVE-2006-4226) are yet to be documented in VuXML.

Fix: Below patch documents these CVEs in vuln.xml.
Comment 1 Mark Linimon freebsd_committer freebsd_triage 2006-10-29 00:38:50 UTC 
Responsible Changed
From-To: freebsd-bugs->secteam

Over to maintainer(s).
Comment 2 dfilter service freebsd_committer freebsd_triage 2006-10-29 13:50:34 UTC 
simon       2006-10-29 13:50:01 UTC

  FreeBSD ports repository

  Modified files:
    security/vuxml       vuln.xml 
  Log:
  Document two MySQL privilege escalations.
  
  PR:             ports/104890
  Submitted by:   Henrik Brix Andersen <henrik@brixandersen.dk>
  Approved by:    portmgr (secteam blanket)
  
  Revision  Changes    Path
  1.1210    +61 -1     ports/security/vuxml/vuln.xml
_______________________________________________
cvs-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/cvs-all
To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
Comment 3 Simon L. B. Nielsen freebsd_committer freebsd_triage 2006-10-29 13:51:12 UTC 
State Changed
From-To: open->closed

Committed, thanks! 

I made some minor modifications to make it sound a little less 
dramatic and to not make it sounds like it's only an issue for remote 
MySQL users.