[SECURITY] Fedora 12 Update: mysql-5.1.42-7.fc12

updates at fedoraproject.org updates at fedoraproject.org
Tue Feb 2 01:18:20 UTC 2010


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-1348
2010-02-02 00:37:32
--------------------------------------------------------------------------------

Name        : mysql
Product     : Fedora 12
Version     : 5.1.42
Release     : 7.fc12
URL         : http://www.mysql.com
Summary     : MySQL client programs and shared libraries
Description :
MySQL is a multi-user, multi-threaded SQL database server. MySQL is a
client/server implementation consisting of a server daemon (mysqld)
and many different client programs and libraries. The base package
contains the standard MySQL client programs and generic MySQL files.

--------------------------------------------------------------------------------
Update Information:

Add backported patch for CVE-2008-7247  Use non-expired certificates for SSL
testing
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jan 29 2010 Tom Lane <tgl at redhat.com> 5.1.42-7
- Add backported patch for CVE-2008-7247 (upstream bug 39277)
Related: #543619
- Use non-expired certificates for SSL testing (upstream bug 50702)
- Emit explicit error message if user tries to build RPM as root
Related: #558915
- Correct Source0: tag and comment to reflect how to get the tarball
- Add comment suggesting disabling symbolic links in /etc/my.cnf
Related: #553652
- Change %define to %global, per packaging guidelines
* Sat Jan  2 2010 Tom Lane <tgl at redhat.com> 5.1.42-2
- Disable building the innodb plugin; it tickles assorted gcc bugs and
  doesn't seem entirely ready for prime time anyway.
* Fri Jan  1 2010 Tom Lane <tgl at redhat.com> 5.1.42-1
- Update to MySQL 5.1.42, for various fixes described at
  http://dev.mysql.com/doc/refman/5.1/en/news-5-1-42.html
- Start mysqld_safe with --basedir=/usr, to avoid unwanted SELinux messages
Resolves: #547485
* Thu Dec 17 2009 Tom Lane <tgl at redhat.com> 5.1.41-2
- Update to MySQL 5.1.41, for various fixes described at
  http://dev.mysql.com/doc/refman/5.1/en/news-5-1-41.html
  including fixes for CVE-2009-4019
Related: #540906
- Stop waiting during "service mysqld start" if mysqld_safe exits
Resolves: #544095
* Tue Nov 10 2009 Tom Lane <tgl at redhat.com> 5.1.40-1
- Update to MySQL 5.1.40, for various fixes described at
  http://dev.mysql.com/doc/refman/5.1/en/news-5-1-40.html
- Do not force the --log-error setting in mysqld init script
Resolves: #533736
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #543619 - CVE-2008-7247 MySQL: Intended access restrictions bypass
        https://bugzilla.redhat.com/show_bug.cgi?id=543619
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update mysql' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the package-announce mailing list