Mandriva Linux Security Advisory : mysql (MDVSA-2012:178)
Medium Nessus Plugin ID 63199
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionA vulnerability was discovered and corrected in mysql :
Stack-based buffer overflow in MySQL 5.5.19, 5.1.53, and possibly other versions, and MariaDB 5.5.2.x before 5.5.28a, 5.3.x before 5.3.11, 5.2.x before 5.2.13 and 5.1.x before 5.1.66, allows remote authenticated users to execute arbitrary code via a long argument to the GRANT FILE command (CVE-2012-5611).
The updated packages have been patched to correct this issue.
SolutionUpdate the affected packages.