[SECURITY] Fedora 13 Update: mysql-5.1.48-2.fc13
updates at fedoraproject.org
updates at fedoraproject.org
Tue Jul 27 02:41:30 UTC 2010
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-11135
2010-07-15 20:43:39
--------------------------------------------------------------------------------
Name : mysql
Product : Fedora 13
Version : 5.1.48
Release : 2.fc13
URL : http://www.mysql.com
Summary : MySQL client programs and shared libraries
Description :
MySQL is a multi-user, multi-threaded SQL database server. MySQL is a
client/server implementation consisting of a server daemon (mysqld)
and many different client programs and libraries. The base package
contains the standard MySQL client programs and generic MySQL files.
--------------------------------------------------------------------------------
Update Information:
- Update to MySQL 5.1.48, for various fixes described at
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-48.html including a fix for
CVE-2010-2008 Related: #614214 - Duplicate COPYING and EXCEPTIONS-CLIENT in
-libs and -embedded subpackages, to ensure they are available when any subset
of mysql RPMs are installed, per revised packaging guidelines - Allow init
script's STARTTIMEOUT/STOPTIMEOUT to be overridden from sysconfig Related:
#609734
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 13 2010 Tom Lane <tgl at redhat.com> 5.1.48-2
- Duplicate COPYING and EXCEPTIONS-CLIENT in -libs and -embedded subpackages,
to ensure they are available when any subset of mysql RPMs are installed,
per revised packaging guidelines
- Allow init script's STARTTIMEOUT/STOPTIMEOUT to be overridden from sysconfig
Related: #609734
* Mon Jun 21 2010 Tom Lane <tgl at redhat.com> 5.1.48-1
- Update to MySQL 5.1.48, for various fixes described at
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-48.html
including a fix for CVE-2010-2008
Related: #614214
* Fri Jun 4 2010 Tom Lane <tgl at redhat.com> 5.1.47-2
- Add back "partition" storage engine
Resolves: #597390
- Fix broken "federated" storage engine plugin
Related: #587170
- Read all certificates in SSL certificate files, to support chained certs
Related: #598656
* Mon May 24 2010 Tom Lane <tgl at redhat.com> 5.1.47-1
- Update to MySQL 5.1.47, for various fixes described at
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-47.html
including fixes for CVE-2010-1848, CVE-2010-1849, CVE-2010-1850
Resolves: #592862
Resolves: #583717
- Create mysql group explicitly in pre-server script, to ensure correct GID
Related: #594155
* Sat Apr 24 2010 Tom Lane <tgl at redhat.com> 5.1.46-1
- Update to MySQL 5.1.46, for various fixes described at
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-46.html
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #614214 - CVE-2010-2008 mysql: remote authenticated DoS via ALTER DATABASE
https://bugzilla.redhat.com/show_bug.cgi?id=614214
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update mysql' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list