Mandrake Linux Security Advisory : MySQL (MDKSA-2007:139)

This script is Copyright (C) 2007-2013 Tenable Network Security, Inc.


Synopsis :

The remote Mandrake Linux host is missing one or more security
updates.

Description :

MySQL 5.x before 5.0.36 allows local users to cause a denial of
service (database crash) by performing information_schema table
subselects and using ORDER BY to sort a single-row result, which
prevents certain structure elements from being initialized and
triggers a NULL dereference in the filesort function. This issue does
not affect MySQL 5.0.37 in Mandriva Linux 2007.1. (CVE-2007-1420)

The in_decimal::set function in item_cmpfunc.cc in MySQL before
5.0.40, and 5.1 before 5.1.18-beta, allows context-dependent attackers
to cause a denial of service (crash) via a crafted IF clause that
results in a divide-by-zero error and a NULL pointer dereference.
(CVE-2007-2583)

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does
not require the DROP privilege for RENAME TABLE statements, which
allows remote authenticated users to rename arbitrary tables.
(CVE-2007-2691)

Updated packages have been patched to prevent the above issues.

Solution :

Update the affected packages.

Risk factor :

Medium / CVSS Base Score : 4.9
(CVSS2#AV:N/AC:M/Au:S/C:N/I:P/A:P)

Family: Mandriva Local Security Checks

Nessus Plugin ID: 25669 (mandrake_MDKSA-2007-139.nasl)

Bugtraq ID:

CVE ID: CVE-2007-1420
CVE-2007-2583
CVE-2007-2691

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now