Path to this page:
./
databases/mysql5-server,
MySQL 5, a free SQL database (server)
Branch: pkgsrc-2010Q1,
Version: 5.0.91,
Package name: mysql-server-5.0.91,
Maintainer: sketchMySQL is a SQL (Structured Query Language) database server. SQL is the
most popular database language in the world. MySQL is a client-server
implementation that consists of a server daemon `mysqld' and many
different client programs/libraries.
The main goals of MySQL are speed and robustness.
The base upon which MySQL is built is a set of routines that have been
used in a highly demanding production environment for many years. While
MySQL is still in development it already offers a rich and highly useful
function set.
The official way to pronounce 'MySQL' is 'My Ess Que Ell' (Not MY-SEQUEL).
This package contains the MySQL server programs and libraries.
DEINSTALL [+/-]# $NetBSD: DEINSTALL,v 1.1.1.1 2005/10/31 09:22:26 xtraeme Exp $
case ${STAGE} in
POST-DEINSTALL)
if [ -d @MYSQL_DATADIR@ ]; then
${CAT} << EOF
===========================================================================
If you won't be using ${PKGNAME} any longer, and you don't
wish to preserve your existing databases, then you may remove the
following directory:
@MYSQL_DATADIR@
===========================================================================
EOF
fi
esac
Required to run:[
lang/perl5] [
databases/mysql5-client]
Required to build:[
shells/bash] [
archivers/bsdtar] [
devel/gmake] [
devel/autoconf] [
devel/libtool-base]
Package options: ssl
Master sites: (Expand)
SHA1: 14a79138a1296ce6ebb681fceba622d870feba3e
RMD160: 3aaa638172f6916d3698c5421b24a01647f7e9db
Filesize: 21816.908 KB
Version history: (Expand)
- (2010-06-06) Updated to version: mysql-server-5.0.91
- (2010-04-09) Package added to pkgsrc.se, version mysql-server-5.0.90 (created)
CVS history: (Expand)
2010-06-06 13:32:35 by S.P.Zeidler | Files touched by this commit (4) | |
Log message:
Pullup ticket 3139 - requested by taca
security update
Revisions pulled up:
- pkgsrc/databases/mysql5-client/Makefile.common 1.39
- pkgsrc/databases/mysql5-client/buildlink3.mk 1.16
- pkgsrc/databases/mysql5-client/distinfo 1.29
- pkgsrc/databases/mysql5-server/distinfo 1.25
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Wed Jun 2 13:34:45 UTC 2010
Modified Files:
pkgsrc/databases/mysql5-client: Makefile.common buildlink3.mk distinfo
pkgsrc/databases/mysql5-server: distinfo
Log message:
Update mysql5-{client,server} package to 5.0.91.
For full changes, refer http://dev.mysql.com/doc/refman/5.0/en/news-5-0-91.html.
Here is security related changes.
* Security Fix: The server failed to check the table name argument of
a COM_FIELD_LIST command packet for validity and compliance to
acceptable table name standards. This could be exploited to bypass
almost all forms of checks for privileges and table-level grants by
providing a specially crafted table name argument to COM_FIELD_LIST.
In MySQL 5.0 and above, this allowed an authenticated user with
SELECT privileges on one table to obtain the field definitions of
any table in all other databases and potentially of other MySQL
instances accessible from the server's file system.
Additionally, for MySQL version 5.1 and above, an authenticated user
with DELETE or SELECT privileges on one table could delete or read
content from any other table in all databases on this server, and
potentially of other MySQL instances accessible from the server's
file system. (Bug#53371, CVE-2010-1848)
* Security Fix: The server was susceptible to a buffer-overflow attack
due to a failure to perform bounds checking on the table name
argument of a COM_FIELD_LIST command packet. By sending long data
for the table name, a buffer is overflown, which could be exploited
by an authenticated user to inject malicious code. (Bug#53237,
CVE-2010-1850)
* Security Fix: The server could be tricked into reading packets
indefinitely if it received a packet larger than the maximum size of
one packet. (Bug#50974, CVE-2010-1849)
To generate a diff of this commit:
cvs rdiff -u -r1.38 -r1.39 pkgsrc/databases/mysql5-client/Makefile.common
cvs rdiff -u -r1.15 -r1.16 pkgsrc/databases/mysql5-client/buildlink3.mk
cvs rdiff -u -r1.28 -r1.29 pkgsrc/databases/mysql5-client/distinfo
cvs rdiff -u -r1.24 -r1.25 pkgsrc/databases/mysql5-server/distinfo
|