RHEL 4 / 5 : mysql (RHSA-2007:1155)

high Nessus Plugin ID 29737

Synopsis

The remote Red Hat host is missing one or more security updates.

Description

Updated mysql packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5.

This update has been rated as having important security impact by the Red Hat Security Response Team.

MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon (mysqld), and many different client programs and libraries.

A flaw was found in a way MySQL handled symbolic links when database tables were created with explicit 'DATA' and 'INDEX DIRECTORY' options. An authenticated user could create a table that would overwrite tables in other databases, causing destruction of data or allowing the user to elevate privileges. (CVE-2007-5969)

A flaw was found in a way MySQL's InnoDB engine handled spatial indexes. An authenticated user could create a table with spatial indexes, which are not supported by the InnoDB engine, that would cause the mysql daemon to crash when used. This issue only causes a temporary denial of service, as the mysql daemon will be automatically restarted after the crash. (CVE-2007-5925)

All mysql users are advised to upgrade to these updated packages, which contain backported patches to resolve these issues.

Solution

Update the affected packages.

See Also

https://access.redhat.com/security/cve/cve-2007-5925

https://access.redhat.com/security/cve/cve-2007-5969

https://access.redhat.com/errata/RHSA-2007:1155

Plugin Details

Severity: High

ID: 29737

File Name: redhat-RHSA-2007-1155.nasl

Version: 1.28

Type: local

Agent: unix

Published: 12/19/2007

Updated: 1/14/2021

Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 7.1

Temporal Score: 5.6

Vector: CVSS2#AV:N/AC:H/Au:S/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:redhat:enterprise_linux:mysql-devel, p-cpe:/a:redhat:enterprise_linux:mysql, p-cpe:/a:redhat:enterprise_linux:mysql-server, cpe:/o:redhat:enterprise_linux:5, p-cpe:/a:redhat:enterprise_linux:mysql-bench, p-cpe:/a:redhat:enterprise_linux:mysql-test, cpe:/o:redhat:enterprise_linux:4, cpe:/o:redhat:enterprise_linux:5.1, cpe:/o:redhat:enterprise_linux:4.6

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 12/18/2007

Vulnerability Publication Date: 11/9/2007

Reference Information

CVE: CVE-2007-5925, CVE-2007-5969

BID: 26353, 26765

CWE: 20, 264

RHSA: 2007:1155