Mandrake Linux Security Advisory : MySQL (MDKSA-2007:177)
Medium Nessus Plugin ID 26009
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionA vulnerability was found in MySQL's authentication protocol, making it possible for a remote unauthenticated attacker to send a specially crafted authentication request to the MySQL server causing it to crash (CVE-2007-3780).
Another flaw was discovered in MySQL that allowed remote authenticated users to gain update privileges for a table in another database via a view that refers to the external table (CVE-2007-3782).
Updated packages have been patched to prevent these issues.
SolutionUpdate the affected packages.