pkgsrc.se | The NetBSD package collection

Subject: CVS commit: pkgsrc/databases/mysql55-client
From: Maya Rashish
Date: 2019-01-20 19:03:25
Message id: 20190120180325.5BB21FB16@cvs.NetBSD.org

Log Message:
mysql55-client: change the default configuration to avoid information
disclosure to a malicious server.

Backport of upstream commit:
https://github.com/mysql/mysql-server/commit/98ed3d8bc8ad724686d26c7bf98dced3bd1777be

Exploit method described here:
https://gwillem.gitlab.io/2019/01/17/adminer-4.6.2-file-disclosure-vulnerability/

Files:

Revision	Action	file
1.32	modify	pkgsrc/databases/mysql55-client/Makefile
1.63	modify	pkgsrc/databases/mysql55-client/distinfo
1.7	modify	pkgsrc/databases/mysql55-client/patches/patch-CMakeLists.txt
1.1	add	pkgsrc/databases/mysql55-client/patches/patch-cmake_build__configurations_mysql__release.cmake
1.1	add	pkgsrc/databases/mysql55-client/patches/patch-sql_sys__vars.cc