SuSE 11.3 Security Update : MySQL (SAT Patch Number 8217)

Medium Nessus Plugin ID 69511

Synopsis

The remote SuSE 11 host is missing one or more security updates.

Description

This version upgrade of mysql to 5.5.32 fixes multiple security issues :

CVE-2013-1861 / CVE-2013-3783 / CVE-2013-3793 / CVE-2013-3794 / CVE-2013-3795 / CVE-2013-3796 / CVE-2013-3798 / CVE-2013-3801 / CVE-2013-3802 / CVE-2013-3804 / CVE-2013-3805 / CVE-2013-3806 / CVE-2013-3807 / CVE-2013-3808 / CVE-2013-3809 / CVE-2013-3810 / CVE-2013-3811 / CVE-2013-3812

Additionally, it contains numerous bug fixes and improvements. :

- making mysqldump work with MySQL 5.0. (bnc#768832)

- fixed log rights. (bnc#789263 and bnc#803040)

- binlog disabled in default configuration. (bnc#791863)

- fixed dependencies for client package. (bnc#780019)

- minor polishing of spec/installation

- avoiding file conflicts with mytop

- better fix for hardcoded libdir issue

- fix hardcoded plugin paths. (bnc#834028)

- Use chown --no-dereference instead of chown to improve security. (bnc#834967)

- Adjust to spell !includedir correctly in /etc/my.cnf (bnc#734436)

Solution

Apply SAT patch number 8217.

See Also

https://bugzilla.novell.com/show_bug.cgi?id=734436

https://bugzilla.novell.com/show_bug.cgi?id=768832

https://bugzilla.novell.com/show_bug.cgi?id=780019

https://bugzilla.novell.com/show_bug.cgi?id=789263

https://bugzilla.novell.com/show_bug.cgi?id=791863

https://bugzilla.novell.com/show_bug.cgi?id=803040

https://bugzilla.novell.com/show_bug.cgi?id=830086

https://bugzilla.novell.com/show_bug.cgi?id=834028

https://bugzilla.novell.com/show_bug.cgi?id=834967

http://support.novell.com/security/cve/CVE-2013-1861.html

http://support.novell.com/security/cve/CVE-2013-3783.html

http://support.novell.com/security/cve/CVE-2013-3793.html

http://support.novell.com/security/cve/CVE-2013-3794.html

http://support.novell.com/security/cve/CVE-2013-3795.html

http://support.novell.com/security/cve/CVE-2013-3796.html

http://support.novell.com/security/cve/CVE-2013-3798.html

http://support.novell.com/security/cve/CVE-2013-3801.html

http://support.novell.com/security/cve/CVE-2013-3802.html

http://support.novell.com/security/cve/CVE-2013-3804.html

http://support.novell.com/security/cve/CVE-2013-3805.html

http://support.novell.com/security/cve/CVE-2013-3806.html

http://support.novell.com/security/cve/CVE-2013-3807.html

http://support.novell.com/security/cve/CVE-2013-3808.html

http://support.novell.com/security/cve/CVE-2013-3809.html

http://support.novell.com/security/cve/CVE-2013-3810.html

http://support.novell.com/security/cve/CVE-2013-3811.html

http://support.novell.com/security/cve/CVE-2013-3812.html

Plugin Details

Severity: Medium

ID: 69511

File Name: suse_11_libmysql55client18-130815.nasl

Version: Revision: 1.1

Type: local

Agent: unix

Published: 2013/08/30

Updated: 2013/08/30

Dependencies: 12634

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 5.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:P

Vulnerability Information

CPE: cpe:/o:novell:suse_linux:11

Patch Publication Date: 2013/08/15

Reference Information

CVE: CVE-2013-1861, CVE-2013-3783, CVE-2013-3793, CVE-2013-3794, CVE-2013-3795, CVE-2013-3796, CVE-2013-3798, CVE-2013-3801, CVE-2013-3802, CVE-2013-3804, CVE-2013-3805, CVE-2013-3806, CVE-2013-3807, CVE-2013-3808, CVE-2013-3809, CVE-2013-3810, CVE-2013-3811, CVE-2013-3812