Skip to navigation

Security Advisory Moderate: mysql security update

Advisory: RHSA-2010:0109-1
Type: Security Advisory
Severity: Moderate
Issued on: 2010-02-16
Last updated on: 2010-02-16
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
Red Hat Enterprise Linux EUS (v. 5.4.z server)
CVEs (cve.mitre.org): CVE-2009-4019
CVE-2009-4028
CVE-2009-4030

Details

Updated mysql packages that fix multiple security issues are now available
for Red Hat Enterprise Linux 5.

This update has been rated as having moderate security impact by the Red
Hat Security Response Team.

MySQL is a multi-user, multi-threaded SQL database server. It consists of
the MySQL server daemon (mysqld) and many client programs and libraries.

It was discovered that the MySQL client ignored certain SSL certificate
verification errors when connecting to servers. A man-in-the-middle
attacker could use this flaw to trick MySQL clients into connecting to a
spoofed MySQL server. (CVE-2009-4028)

Note: This fix may uncover previously hidden SSL configuration issues, such
as incorrect CA certificates being used by clients or expired server
certificates. This update should be carefully tested in deployments where
SSL connections are used.

A flaw was found in the way MySQL handled SELECT statements with subqueries
in the WHERE clause, that assigned results to a user variable. A remote,
authenticated attacker could use this flaw to crash the MySQL server daemon
(mysqld). This issue only caused a temporary denial of service, as the
MySQL daemon was automatically restarted after the crash. (CVE-2009-4019)

When the "datadir" option was configured with a relative path, MySQL did
not properly check paths used as arguments for the DATA DIRECTORY and INDEX
DIRECTORY directives. An authenticated attacker could use this flaw to
bypass the restriction preventing the use of subdirectories of the MySQL
data directory being used as DATA DIRECTORY and INDEX DIRECTORY paths.
(CVE-2009-4030)

Note: Due to the security risks and previous security issues related to the
use of the DATA DIRECTORY and INDEX DIRECTORY directives, users not
depending on this feature should consider disabling it by adding
"symbolic-links=0" to the "[mysqld]" section of the "my.cnf" configuration
file. In this update, an example of such a configuration was added to the
default "my.cnf" file.

All MySQL users are advised to upgrade to these updated packages, which
contain backported patches to resolve these issues. After installing this
update, the MySQL server daemon (mysqld) will be restarted automatically.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Updated packages

RHEL Desktop Workstation (v. 5 client)

SRPMS:
mysql-5.0.77-4.el5_4.2.src.rpm
File outdated by:  RHSA-2013:0180
    MD5: d1f3842a89a20945ea596c1d43487d1b
 
IA-32:
mysql-bench-5.0.77-4.el5_4.2.i386.rpm
File outdated by:  RHSA-2013:0180
    MD5: 501277bd6b63abbec18a49a2beaf74dc
mysql-devel-5.0.77-4.el5_4.2.i386.rpm
File outdated by:  RHSA-2013:0180
    MD5: f771e587070134d3234e83fb31147d95
mysql-server-5.0.77-4.el5_4.2.i386.rpm
File outdated by:  RHSA-2013:0180
    MD5: 7f115e9c158f3756dcf984bdc0424e4d
mysql-test-5.0.77-4.el5_4.2.i386.rpm
File outdated by:  RHSA-2013:0180
    MD5: b2319487a2b86ad69ae7837b6eb83381
 
x86_64:
mysql-bench-5.0.77-4.el5_4.2.x86_64.rpm
File outdated by:  RHSA-2013:0180
    MD5: d187874a481858cdd5e6a71280ccfe6c
mysql-devel-5.0.77-4.el5_4.2.i386.rpm
File outdated by:  RHSA-2013:0180
    MD5: f771e587070134d3234e83fb31147d95
mysql-devel-5.0.77-4.el5_4.2.x86_64.rpm
File outdated by:  RHSA-2013:0180
    MD5: 340e658b26c562040f77c46e52d41772
mysql-server-5.0.77-4.el5_4.2.x86_64.rpm
File outdated by:  RHSA-2013:0180
    MD5: 640175dd9af9f472f2e8279b6b1336a7
mysql-test-5.0.77-4.el5_4.2.x86_64.rpm
File outdated by:  RHSA-2013:0180
    MD5: 4ad7fdc9b43042a737058239fbf16e73
 
Red Hat Enterprise Linux (v. 5 server)

SRPMS:
mysql-5.0.77-4.el5_4.2.src.rpm
File outdated by:  RHSA-2013:0180
    MD5: d1f3842a89a20945ea596c1d43487d1b
 
IA-32:
mysql-5.0.77-4.el5_4.2.i386.rpm
File outdated by:  RHSA-2013:0180
    MD5: 2fd93bba402e2e9400bfbd8c59aca105
mysql-bench-5.0.77-4.el5_4.2.i386.rpm
File outdated by:  RHSA-2013:0180
    MD5: 501277bd6b63abbec18a49a2beaf74dc
mysql-devel-5.0.77-4.el5_4.2.i386.rpm
File outdated by:  RHSA-2013:0180
    MD5: f771e587070134d3234e83fb31147d95
mysql-server-5.0.77-4.el5_4.2.i386.rpm
File outdated by:  RHSA-2013:0180
    MD5: 7f115e9c158f3756dcf984bdc0424e4d
mysql-test-5.0.77-4.el5_4.2.i386.rpm
File outdated by:  RHSA-2013:0180
    MD5: b2319487a2b86ad69ae7837b6eb83381
 
IA-64:
mysql-5.0.77-4.el5_4.2.i386.rpm
File outdated by:  RHSA-2013:0180
    MD5: 2fd93bba402e2e9400bfbd8c59aca105
mysql-5.0.77-4.el5_4.2.ia64.rpm
File outdated by:  RHSA-2013:0180
    MD5: d2aae7ce7a515f53df193bd61d96548a
mysql-bench-5.0.77-4.el5_4.2.ia64.rpm
File outdated by:  RHSA-2013:0180
    MD5: 44ec7760bdee91ce96241844b45c8df7
mysql-devel-5.0.77-4.el5_4.2.ia64.rpm
File outdated by:  RHSA-2013:0180
    MD5: b6ed59fac1b2c1f5bee5090fa7d2ddce
mysql-server-5.0.77-4.el5_4.2.ia64.rpm
File outdated by:  RHSA-2013:0180
    MD5: af8d9db93c2beead9d8abaadd8844ea7
mysql-test-5.0.77-4.el5_4.2.ia64.rpm
File outdated by:  RHSA-2013:0180
    MD5: 4e27d43cc79f2b593a369f91cee20cd2
 
PPC:
mysql-5.0.77-4.el5_4.2.ppc.rpm
File outdated by:  RHSA-2013:0180
    MD5: 8124467ea40a66f84e637dce6f453720
mysql-5.0.77-4.el5_4.2.ppc64.rpm
File outdated by:  RHSA-2013:0180
    MD5: bf993d1495ebda6e3e9f637c9e828d49
mysql-bench-5.0.77-4.el5_4.2.ppc.rpm
File outdated by:  RHSA-2013:0180
    MD5: aa7866178f9808803787e7246f8500fa
mysql-devel-5.0.77-4.el5_4.2.ppc.rpm
File outdated by:  RHSA-2013:0180
    MD5: 231c090791563364dca81491fd8d0360
mysql-devel-5.0.77-4.el5_4.2.ppc64.rpm
File outdated by:  RHSA-2013:0180
    MD5: 04d09be762d53ce936e91d5a548b025b
mysql-server-5.0.77-4.el5_4.2.ppc.rpm
File outdated by:  RHSA-2013:0180
    MD5: bb4a6b930d62c5a34a4d7f8fe0fd20ed
mysql-server-5.0.77-4.el5_4.2.ppc64.rpm
File outdated by:  RHSA-2013:0180
    MD5: f0377377fcc7ce99d26ac44007c50079
mysql-test-5.0.77-4.el5_4.2.ppc.rpm
File outdated by:  RHSA-2013:0180
    MD5: 6555a037d64e3b19d53557562de7da52
 
s390x:
mysql-5.0.77-4.el5_4.2.s390.rpm
File outdated by:  RHSA-2013:0180
    MD5: 854f065e2bfe9165d75fcb59ffbff5b8
mysql-5.0.77-4.el5_4.2.s390x.rpm
File outdated by:  RHSA-2013:0180
    MD5: 3ae28e909d0f3b9c787dc8395711d481
mysql-bench-5.0.77-4.el5_4.2.s390x.rpm
File outdated by:  RHSA-2013:0180
    MD5: 7e413231d891cae602742e500074d185
mysql-devel-5.0.77-4.el5_4.2.s390.rpm
File outdated by:  RHSA-2013:0180
    MD5: b3e8c744925f20fc179599e4b12eaf24
mysql-devel-5.0.77-4.el5_4.2.s390x.rpm
File outdated by:  RHSA-2013:0180
    MD5: ca1aed24fcbd7233b9815fa9015249f6
mysql-server-5.0.77-4.el5_4.2.s390x.rpm
File outdated by:  RHSA-2013:0180
    MD5: 6215c04fca3224cbbbae2522f19bc720
mysql-test-5.0.77-4.el5_4.2.s390x.rpm
File outdated by:  RHSA-2013:0180
    MD5: 22f1427aa9b166cb5a1a308d95127511
 
x86_64:
mysql-5.0.77-4.el5_4.2.i386.rpm
File outdated by:  RHSA-2013:0180
    MD5: 2fd93bba402e2e9400bfbd8c59aca105
mysql-5.0.77-4.el5_4.2.x86_64.rpm
File outdated by:  RHSA-2013:0180
    MD5: 38f8ba7d0c0e6f834c1bea00a426c9bb
mysql-bench-5.0.77-4.el5_4.2.x86_64.rpm
File outdated by:  RHSA-2013:0180
    MD5: d187874a481858cdd5e6a71280ccfe6c
mysql-devel-5.0.77-4.el5_4.2.i386.rpm
File outdated by:  RHSA-2013:0180
    MD5: f771e587070134d3234e83fb31147d95
mysql-devel-5.0.77-4.el5_4.2.x86_64.rpm
File outdated by:  RHSA-2013:0180
    MD5: 340e658b26c562040f77c46e52d41772
mysql-server-5.0.77-4.el5_4.2.x86_64.rpm
File outdated by:  RHSA-2013:0180
    MD5: 640175dd9af9f472f2e8279b6b1336a7
mysql-test-5.0.77-4.el5_4.2.x86_64.rpm
File outdated by:  RHSA-2013:0180
    MD5: 4ad7fdc9b43042a737058239fbf16e73
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
mysql-5.0.77-4.el5_4.2.src.rpm
File outdated by:  RHSA-2013:0180
    MD5: d1f3842a89a20945ea596c1d43487d1b
 
IA-32:
mysql-5.0.77-4.el5_4.2.i386.rpm
File outdated by:  RHSA-2013:0180
    MD5: 2fd93bba402e2e9400bfbd8c59aca105
 
x86_64:
mysql-5.0.77-4.el5_4.2.i386.rpm
File outdated by:  RHSA-2013:0180
    MD5: 2fd93bba402e2e9400bfbd8c59aca105
mysql-5.0.77-4.el5_4.2.x86_64.rpm
File outdated by:  RHSA-2013:0180
    MD5: 38f8ba7d0c0e6f834c1bea00a426c9bb
 
Red Hat Enterprise Linux EUS (v. 5.4.z server)

SRPMS:
mysql-5.0.77-4.el5_4.2.src.rpm
File outdated by:  RHSA-2013:0180
    MD5: d1f3842a89a20945ea596c1d43487d1b
 
IA-32:
mysql-5.0.77-4.el5_4.2.i386.rpm     MD5: 2fd93bba402e2e9400bfbd8c59aca105
mysql-bench-5.0.77-4.el5_4.2.i386.rpm     MD5: 501277bd6b63abbec18a49a2beaf74dc
mysql-devel-5.0.77-4.el5_4.2.i386.rpm     MD5: f771e587070134d3234e83fb31147d95
mysql-server-5.0.77-4.el5_4.2.i386.rpm     MD5: 7f115e9c158f3756dcf984bdc0424e4d
mysql-test-5.0.77-4.el5_4.2.i386.rpm     MD5: b2319487a2b86ad69ae7837b6eb83381
 
IA-64:
mysql-5.0.77-4.el5_4.2.i386.rpm     MD5: 2fd93bba402e2e9400bfbd8c59aca105
mysql-5.0.77-4.el5_4.2.ia64.rpm     MD5: d2aae7ce7a515f53df193bd61d96548a
mysql-bench-5.0.77-4.el5_4.2.ia64.rpm     MD5: 44ec7760bdee91ce96241844b45c8df7
mysql-devel-5.0.77-4.el5_4.2.ia64.rpm     MD5: b6ed59fac1b2c1f5bee5090fa7d2ddce
mysql-server-5.0.77-4.el5_4.2.ia64.rpm     MD5: af8d9db93c2beead9d8abaadd8844ea7
mysql-test-5.0.77-4.el5_4.2.ia64.rpm     MD5: 4e27d43cc79f2b593a369f91cee20cd2
 
PPC:
mysql-5.0.77-4.el5_4.2.ppc.rpm     MD5: 8124467ea40a66f84e637dce6f453720
mysql-5.0.77-4.el5_4.2.ppc64.rpm     MD5: bf993d1495ebda6e3e9f637c9e828d49
mysql-bench-5.0.77-4.el5_4.2.ppc.rpm     MD5: aa7866178f9808803787e7246f8500fa
mysql-devel-5.0.77-4.el5_4.2.ppc.rpm     MD5: 231c090791563364dca81491fd8d0360
mysql-devel-5.0.77-4.el5_4.2.ppc64.rpm     MD5: 04d09be762d53ce936e91d5a548b025b
mysql-server-5.0.77-4.el5_4.2.ppc.rpm     MD5: bb4a6b930d62c5a34a4d7f8fe0fd20ed
mysql-server-5.0.77-4.el5_4.2.ppc64.rpm     MD5: f0377377fcc7ce99d26ac44007c50079
mysql-test-5.0.77-4.el5_4.2.ppc.rpm     MD5: 6555a037d64e3b19d53557562de7da52
 
s390x:
mysql-5.0.77-4.el5_4.2.s390.rpm     MD5: 854f065e2bfe9165d75fcb59ffbff5b8
mysql-5.0.77-4.el5_4.2.s390x.rpm     MD5: 3ae28e909d0f3b9c787dc8395711d481
mysql-bench-5.0.77-4.el5_4.2.s390x.rpm     MD5: 7e413231d891cae602742e500074d185
mysql-devel-5.0.77-4.el5_4.2.s390.rpm     MD5: b3e8c744925f20fc179599e4b12eaf24
mysql-devel-5.0.77-4.el5_4.2.s390x.rpm     MD5: ca1aed24fcbd7233b9815fa9015249f6
mysql-server-5.0.77-4.el5_4.2.s390x.rpm     MD5: 6215c04fca3224cbbbae2522f19bc720
mysql-test-5.0.77-4.el5_4.2.s390x.rpm     MD5: 22f1427aa9b166cb5a1a308d95127511
 
x86_64:
mysql-5.0.77-4.el5_4.2.i386.rpm     MD5: 2fd93bba402e2e9400bfbd8c59aca105
mysql-5.0.77-4.el5_4.2.x86_64.rpm     MD5: 38f8ba7d0c0e6f834c1bea00a426c9bb
mysql-bench-5.0.77-4.el5_4.2.x86_64.rpm     MD5: d187874a481858cdd5e6a71280ccfe6c
mysql-devel-5.0.77-4.el5_4.2.i386.rpm     MD5: f771e587070134d3234e83fb31147d95
mysql-devel-5.0.77-4.el5_4.2.x86_64.rpm     MD5: 340e658b26c562040f77c46e52d41772
mysql-server-5.0.77-4.el5_4.2.x86_64.rpm     MD5: 640175dd9af9f472f2e8279b6b1336a7
mysql-test-5.0.77-4.el5_4.2.x86_64.rpm     MD5: 4ad7fdc9b43042a737058239fbf16e73
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

540906 - CVE-2009-4019 mysql: DoS (crash) when comparing GIS items from subquery and when handling subqueires in WHERE and assigning a SELECT result to a @variable
541233 - CVE-2009-4028 mysql: client SSL certificate verification flaw
543653 - CVE-2009-4030 mysql: Incomplete fix for CVE-2008-2079 / CVE-2008-4098


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/