Author: paul
Date: 2007-10-11 21:56:07 +0200 (Thu, 11 Oct 2007)
New Revision: 8064
Log:
r30948@arctic: paul | 2007-10-11 14:50:23 -0500
Instead of writing out long ugly CVE URLs, just expand the CVE numbers
to links during preprocessing the way we do for bug numbers.
Modified:
trunk/refman-4.1/news-3.22.xml
trunk/refman-4.1/news-3.23.xml
trunk/refman-4.1/news-4.0.xml
trunk/refman-4.1/news-4.1.xml
trunk/refman-5.0/news-5.0.xml
trunk/refman-5.0/releasenotes-cs-5.0.xml
trunk/refman-5.0/releasenotes-es-5.0.xml
trunk/refman-5.1/news-5.1.xml
trunk/tools/bug-prep.pl
Property changes on: trunk
___________________________________________________________________
Name: svk:merge
- 4767c598-dc10-0410-bea0-d01b485662eb:/mysqldoc-local/mysqldoc/trunk:30884
7d8d2c4e-af1d-0410-ab9f-b038ce55645b:/mysqldoc-local/mysqldoc:25449
b5ec3a16-e900-0410-9ad2-d183a3acac99:/mysqldoc-local/mysqldoc/trunk:14218
bf112a9c-6c03-0410-a055-ad865cd57414:/mysqldoc-local/mysqldoc/trunk:20005
+ 4767c598-dc10-0410-bea0-d01b485662eb:/mysqldoc-local/mysqldoc/trunk:30948
7d8d2c4e-af1d-0410-ab9f-b038ce55645b:/mysqldoc-local/mysqldoc:25449
b5ec3a16-e900-0410-9ad2-d183a3acac99:/mysqldoc-local/mysqldoc/trunk:14218
bf112a9c-6c03-0410-a055-ad865cd57414:/mysqldoc-local/mysqldoc/trunk:20005
Modified: trunk/refman-4.1/news-3.22.xml
===================================================================
--- trunk/refman-4.1/news-3.22.xml 2007-10-11 17:02:06 UTC (rev 8063)
+++ trunk/refman-4.1/news-3.22.xml 2007-10-11 19:56:07 UTC (rev 8064)
Changed blocks: 2, Lines Added: 5, Lines Deleted: 5; 1152 bytes
@@ -141,8 +141,7 @@
<listitem>
<para>
Fixed security problem in the protocol regarding password
- checking.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0148">CVE-2000-0148</ulink>)
+ checking. (CVE-2000-0148)
</para>
</listitem>
@@ -2021,9 +2020,10 @@
<listitem>
<para>
<command>mysqld</command> now ignores trailing
- <quote><literal>;</literal></quote> characters in queries. This
- is to make it easier to migrate from some other SQL servers
- that require the trailing <quote><literal>;</literal></quote>.
+ <quote><literal>;</literal></quote> characters in queries.
+ This is to make it easier to migrate from some other SQL
+ servers that require the trailing
+ <quote><literal>;</literal></quote>.
</para>
</listitem>
Modified: trunk/refman-4.1/news-3.23.xml
===================================================================
--- trunk/refman-4.1/news-3.23.xml 2007-10-11 17:02:06 UTC (rev 8063)
+++ trunk/refman-4.1/news-3.23.xml 2007-10-11 19:56:07 UTC (rev 8064)
Changed blocks: 13, Lines Added: 15, Lines Deleted: 26; 6002 bytes
@@ -85,8 +85,7 @@
<literal>MERGE</literal> tables (even one
<literal>MERGE</literal> table and <literal>MyISAM</literal>
tables), that could've resulted in a crash or hang of the
- server. (Bug #2408,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0837">CVE-2004-0837</ulink>)
+ server. (Bug #2408, CVE-2004-0837)
</para>
</listitem>
@@ -112,15 +111,14 @@
<para>
Fixed a symlink vulnerability in the
<filename>mysqlbug</filename> script. (Bug #3284,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0381">CVE-2004-0381</ulink>)
+ CVE-2004-0381)
</para>
</listitem>
<listitem>
<para>
Fixed bug in privilege checking of <literal>ALTER TABLE
- RENAME</literal>. (Bug #3270,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0835">CVE-2004-0835</ulink>)
+ RENAME</literal>. (Bug #3270, CVE-2004-0835)
</para>
</listitem>
@@ -202,8 +200,7 @@
Fixed potential memory overrun in
<literal>mysql_real_connect()</literal> (which required a
compromised DNS server and certain operating systems). (Bug
- #4017,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0836">CVE-2004-0836</ulink>)
+ #4017, CVE-2004-0836)
</para>
</listitem>
@@ -225,8 +222,7 @@
<literal>mysql.user</literal> table to execute random code or
to gain shell access with the UID of the
<command>mysqld</command> process (thanks to Jedi/Sector One
- for spotting and reporting this bug).
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0780">CVE-2003-0780</ulink>)
+ for spotting and reporting this bug). (CVE-2003-0780)
</para>
</listitem>
@@ -525,7 +521,7 @@
<para>
Security enhancement: <command>mysqld</command> no longer
reads options from world-writable config files.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0150">CVE-2003-0150</ulink>)
+ (CVE-2003-0150)
</para>
</listitem>
@@ -535,7 +531,7 @@
<command>safe_mysqld</command> now use only the first
<option>--user</option> option specified on the command line.
Normally this comes from <filename>/etc/my.cnf</filename>.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0150">CVE-2003-0150</ulink>)
+ (CVE-2003-0150)
</para>
</listitem>
@@ -696,8 +692,7 @@
a specially hacked version of MySQL client to crash
<command>mysqld</command>. Note that you must log in to the
server by using a valid user account to be able to exploit
- this bug.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0073">CVE-2003-0073</ulink>)
+ this bug. (CVE-2003-0073)
</para>
</listitem>
@@ -794,8 +789,7 @@
<listitem>
<para>
Fixed a bug, that allowed to crash <command>mysqld</command>
- with a specially crafted packet.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1373">CVE-2002-1373</ulink>)
+ with a specially crafted packet. (CVE-2002-1373)
</para>
</listitem>
@@ -810,8 +804,7 @@
<para>
Fixed buffer overrun in <literal>libmysqlclient</literal>
library that allowed malicious MySQL server to crash the
- client application.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1376">CVE-2002-1376</ulink>)
+ client application. (CVE-2002-1376)
</para>
</listitem>
@@ -820,8 +813,7 @@
Fixed security-related bug in
<literal>mysql_change_user()</literal> handling. All users are
strongly recommended to upgrade to the version 3.23.54.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1374">CVE-2002-1374</ulink>,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1375">CVE-2002-1375</ulink>)
+ (CVE-2002-1374, CVE-2002-1375)
</para>
</listitem>
@@ -1417,8 +1409,7 @@
<para>
Fixed buffer overflow problem if someone specified a too-long
<literal>datadir</literal> parameter to
- <command>mysqld</command>.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0969">CVE-2002-0969</ulink>)
+ <command>mysqld</command>. (CVE-2002-0969)
</para>
</listitem>
@@ -3250,8 +3241,7 @@
Fixed a bug that allowed use of database names containing a
<quote><literal>.</literal></quote> character. This fixes a
serious security issue when <command>mysqld</command> is run
- as root.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0407">CVE-2001-0407</ulink>)
+ as root. (CVE-2001-0407)
</para>
</listitem>
@@ -4030,15 +4020,14 @@
<para>
Fixed security bug in <literal>SHOW GRANT</literal> (please
upgrade if you are using an earlier MySQL 3.23 version).
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-1275">CVE-2001-1275</ulink>)
+ (CVE-2001-1275)
</para>
</listitem>
<listitem>
<para>
Fixed buffer overflow bug when writing a certain error
- message.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-1274">CVE-2001-1274</ulink>)
+ message. (CVE-2001-1274)
</para>
</listitem>
Modified: trunk/refman-4.1/news-4.0.xml
===================================================================
--- trunk/refman-4.1/news-4.0.xml 2007-10-11 17:02:06 UTC (rev 8063)
+++ trunk/refman-4.1/news-4.0.xml 2007-10-11 19:56:07 UTC (rev 8064)
Changed blocks: 18, Lines Added: 19, Lines Deleted: 36; 7841 bytes
@@ -423,9 +423,7 @@
<literal>COM_TABLE_DUMP</literal> packets was able to read
uninitialized memory, which potentially, though unlikely in
MySQL, could have led to an information disclosure.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1516">CVE-2006-1516</ulink>,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1517">CVE-2006-1517</ulink>)
- Thanks to Stefano Di Paola
+ (CVE-2006-1516, CVE-2006-1517) Thanks to Stefano Di Paola
<email>stefano.dipaola@stripped</email> for finding and
reporting this bug.
</para>
@@ -718,8 +716,7 @@
<para>
Security improvement: Applied a patch to fix a UDF
library-loading vulnerability that could result in a buffer
- overflow and code execution.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2558">CVE-2005-255CVE-2005-25588</ulink>)
+ overflow and code execution. (CVE-2005-2558)
</para>
</listitem>
@@ -911,8 +908,7 @@
<para>
Fixed a bug that under certain circumstances could allow a
privilege escalation via database wildcards in
- <literal>GRANT</literal>. (Bug #3924,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0957">CVE-2004-0957</ulink>)
+ <literal>GRANT</literal>. (Bug #3924, CVE-2004-0957)
</para>
</listitem>
@@ -961,8 +957,7 @@
files only if a file with the same name does not already
exist. Thanks to Stefano Di Paola
<email>stefano.dipaola@stripped</email> for finding and
- informing us about this issue.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0711">CVE-2005-0711</ulink>)
+ informing us about this issue. (CVE-2005-0711)
</para>
</listitem>
@@ -992,9 +987,7 @@
<xref linkend="udf-aggr-calling"/>, and
<xref linkend="udf-security"/>. Thanks to Stefano Di Paola
<email>stefano.dipaola@stripped</email> for finding and
- informing us about this issue.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0709">CVE-2005-0709</ulink>,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0710">CVE-2005-0710</ulink>)
+ informing us about this issue. (CVE-2005-0709, CVE-2005-0710)
</para>
</listitem>
@@ -1165,8 +1158,7 @@
<command>mysqlaccess</command> script. Reported by Javier
Fernandez-Sanguino Pena and
<ulink url="http://www.debian.org/security/audit">Debian
- Security Audit Team</ulink>.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0004">CVE-2005-0004</ulink>)
+ Security Audit Team</ulink>. (CVE-2005-0004)
</para>
</listitem>
@@ -1714,7 +1706,8 @@
InnoDB: Fixed a bug in the InnoDB <literal>FOREIGN
KEY</literal> parser that prevented <literal>ALTER
TABLE</literal> of tables containing
- <quote><literal>#</literal></quote> in their names. (Bug #5856)
+ <quote><literal>#</literal></quote> in their names. (Bug
+ #5856)
</para>
</listitem>
@@ -1890,8 +1883,7 @@
<literal>MERGE</literal> tables (even one
<literal>MERGE</literal> table and <literal>MyISAM</literal>
tables), that could've resulted in a crash or hang of the
- server. (Bug #2408,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0837">CVE-2004-0837</ulink>)
+ server. (Bug #2408, CVE-2004-0837)
</para>
</listitem>
@@ -2011,8 +2003,7 @@
<para>
Fixed crash in <literal>MATCH ... AGAINST()</literal> on a
phrase search operator with a missing closing double quote.
- (Bug #3870,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0956">CVE-2004-0956</ulink>)
+ (Bug #3870, CVE-2004-0956)
</para>
</listitem>
@@ -2037,8 +2028,7 @@
Fixed potential memory overrun in
<literal>mysql_real_connect()</literal> (which required a
compromised DNS server and certain operating systems). (Bug
- #4017,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0836">CVE-2004-0836</ulink>)
+ #4017, CVE-2004-0836)
</para>
</listitem>
@@ -2193,8 +2183,7 @@
<listitem>
<para>
Fixed a symlink vulnerability in the
- <filename>mysqlhotcopy</filename> script.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0457">CVE-2004-0457</ulink>)
+ <filename>mysqlhotcopy</filename> script. (CVE-2004-0457)
</para>
</listitem>
@@ -2536,7 +2525,7 @@
<para>
Fixed a symlink vulnerability in the
<filename>mysqlbug</filename> script. (Bug #3284,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0381">CVE-2004-0381</ulink>)
+ CVE-2004-0381)
</para>
</listitem>
@@ -2816,8 +2805,7 @@
<listitem>
<para>
Fixed bug in privilege checking of <literal>ALTER TABLE
- RENAME</literal>. (Bug #3270,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0835">CVE-2004-0835</ulink>)
+ RENAME</literal>. (Bug #3270, CVE-2004-0835)
</para>
</listitem>
@@ -4347,8 +4335,7 @@
<literal>mysql.user</literal> table to execute random code or
to gain shell access with the UID of the
<command>mysqld</command> process (thanks to Jedi/Sector One
- for spotting and reporting this bug).
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0780">CVE-2003-0780</ulink>)
+ for spotting and reporting this bug). (CVE-2003-0780)
</para>
</listitem>
@@ -6016,8 +6003,7 @@
<listitem>
<para>
<command>mysqld</command> no longer reads options from
- world-writable config files.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0150">CVE-2003-0150</ulink>)
+ world-writable config files. (CVE-2003-0150)
</para>
</listitem>
@@ -7141,8 +7127,7 @@
<para>
Fixed buffer overrun in <literal>libmysqlclient</literal>
library that allowed a malicious MySQL server to crash the
- client application.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1376">CVE-2002-1376</ulink>)
+ client application. (CVE-2002-1376)
</para>
</listitem>
@@ -7151,8 +7136,7 @@
Fixed security-related bug in
<literal>mysql_change_user()</literal> handling. All users are
strongly recommended to upgrade to version 4.0.6.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1374">CVE-2002-1374</ulink>,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1375">CVE-2002-1375</ulink>)
+ (CVE-2002-1374, CVE-2002-1375)
</para>
</listitem>
@@ -8344,8 +8328,7 @@
<para>
Fixed buffer overflow problem if someone specified a too-long
<literal>datadir</literal> parameter to
- <command>mysqld</command>.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0969">CVE-2002-0969</ulink>)
+ <command>mysqld</command>. (CVE-2002-0969)
</para>
</listitem>
Modified: trunk/refman-4.1/news-4.1.xml
===================================================================
--- trunk/refman-4.1/news-4.1.xml 2007-10-11 17:02:06 UTC (rev 8063)
+++ trunk/refman-4.1/news-4.1.xml 2007-10-11 19:56:07 UTC (rev 8064)
Changed blocks: 25, Lines Added: 37, Lines Deleted: 64; 12449 bytes
@@ -193,8 +193,7 @@
<emphasis role="bold">Security fix</emphasis>: A malformed
password packet in the connection protocol could cause the
server to crash. Thanks for Dormando for reporting this bug
- and providing details and a proof of concept.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3780">CVE-2007-3780</ulink>,
+ and providing details and a proof of concept. (CVE-2007-3780,
Bug #28984)
</para>
</listitem>
@@ -467,9 +466,8 @@
<para>
<emphasis role="bold">Security fix</emphasis>: The requirement
of the <literal>DROP</literal> privilege for <literal>RENAME
- TABLE</literal> was not being enforced.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2691">CVE-2007-2691</ulink>,
- Bug #27515)
+ TABLE</literal> was not being enforced. (CVE-2007-2691, Bug
+ #27515)
</para>
</listitem>
@@ -2725,9 +2723,8 @@
possibly other platforms using case-sensitive filesystems, it
was possible for a user granted rights on a database to create
or access a database whose name differed only from that of the
- first by the case of one or more letters.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4226">CVE-2006-4226</ulink>,
- Bug #17647)
+ first by the case of one or more letters. (CVE-2006-4226, Bug
+ #17647)
</para>
</listitem>
@@ -2744,9 +2741,8 @@
<replaceable>m</replaceable>. If this behavior is undesirable,
you can start the server with the new
<option>--skip-merge</option> option to disable the
- <literal>MERGE</literal> storage engine.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4031">CVE-2006-4031</ulink>,
- Bug #15195)
+ <literal>MERGE</literal> storage engine. (CVE-2006-4031, Bug
+ #15195)
</para>
</listitem>
@@ -2754,11 +2750,10 @@
<para>
<emphasis role="bold">Security fix</emphasis>: Invalid
arguments to <literal>DATE_FORMAT()</literal> caused a server
- crash.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3469">CVE-2006-3469</ulink>,
- Bug #20729) Thanks to Jean-David Maillefer for discovering and
- reporting this problem to the Debian project and to Christian
- Hammers from the Debian Team for notifying us of it.
+ crash. (CVE-2006-3469, Bug #20729) Thanks to Jean-David
+ Maillefer for discovering and reporting this problem to the
+ Debian project and to Christian Hammers from the Debian Team
+ for notifying us of it.
</para>
</listitem>
@@ -3467,8 +3462,7 @@
encoding processing. The bug was in the server, incorrectly
parsing the string escaped with the
<literal>mysql_real_escape_string()</literal> C API function.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2753">CVE-2006-2753</ulink>,
- Bug #8378)
+ (CVE-2006-2753, Bug #8378)
</para>
<para>
@@ -3720,9 +3714,7 @@
<literal>COM_TABLE_DUMP</literal> packets was able to read
uninitialized memory, which potentially, though unlikely in
MySQL, could have led to an information disclosure.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1516">CVE-2006-1516</ulink>,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1517">CVE-2006-1517</ulink>)
- Thanks to Stefano Di Paola
+ (CVE-2006-1516, CVE-2006-1517) Thanks to Stefano Di Paola
<email>stefano.dipaola@stripped</email> for finding and
reporting this bug.
</para>
@@ -4358,8 +4350,7 @@
<listitem>
<para>
<literal>STR_TO_DATE(1,NULL)</literal> caused a server crash.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3081">CVE-2006-3081</ulink>,
- Bug #15828)
+ (CVE-2006-3081, Bug #15828)
</para>
</listitem>
@@ -6576,15 +6567,12 @@
<para>
Security improvement: Applied a patch that addresses a
<literal>zlib</literal> data vulnerability that could result
- in a buffer overflow and code execution.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2096">CVE-2005-2096</ulink>)
- (Bug #11844). Shortly after MySQL 4.1.13 was released, a
- second potential zlib security flaw was discovered and fixed -
- the issue is tracked by the Mitre CVE ID
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1849">CVE-2005-1849</ulink>).
- A patch for this flaw was applied on top of the 4.1.13 sources
- and published as 4.1.13a. The affected binaries have been
- rebuilt.
+ in a buffer overflow and code execution. (CVE-2005-2096) (Bug
+ #11844). Shortly after MySQL 4.1.13 was released, a second
+ potential zlib security flaw was discovered and fixed - the
+ issue is tracked by the Mitre CVE ID (CVE-2005-1849). A patch
+ for this flaw was applied on top of the 4.1.13 sources and
+ published as 4.1.13a. The affected binaries have been rebuilt.
</para>
</listitem>
@@ -6592,8 +6580,7 @@
<para>
Security improvement: Applied a patch to fix a UDF
library-loading vulnerability that could result in a buffer
- overflow and code execution.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2558">CVE-2005-2558</ulink>)
+ overflow and code execution. (CVE-2005-2558)
</para>
</listitem>
@@ -6776,7 +6763,7 @@
<literal>USE CON;</literal>, <literal>USE COM1;</literal>, or
<literal>USE AUX;</literal> would report success even though
the database was not in fact changed. (Bug #9148,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0799">CVE-2005-0799</ulink>)
+ CVE-2005-0799)
</para>
<remark>
@@ -7228,9 +7215,7 @@
<para>
Queries of the form <literal>UPDATE ... (SELECT ... ) SET
...</literal> run on a replication master would crash all the
- slaves.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-4380">CVE-2004-4380</ulink>,
- Bug #10442)
+ slaves. (CVE-2004-4380, Bug #10442)
</para>
</listitem>
@@ -7715,8 +7700,7 @@
<filename>mysql_install_db.X</filename> file with a
predictable filename and insecure permissions, which allowed
local users to execute arbitrary SQL commands by modifying the
- file's contents.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1636">CVE-2005-1636</ulink>)
+ file's contents. (CVE-2005-1636)
</para>
</listitem>
@@ -8624,8 +8608,7 @@
<para>
Fixed a bug that under certain circumstances could allow a
privilege escalation via database wildcards in
- <literal>GRANT</literal>.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0957">CVE-2004-0957</ulink>)
+ <literal>GRANT</literal>. (CVE-2004-0957)
</para>
</listitem>
@@ -9342,8 +9325,7 @@
files only if a file with the same name does not already
exist. Thanks to Stefano Di Paola
<email>stefano.dipaola@stripped</email> for finding and
- informing us about this issue.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0711">CVE-2005-0711</ulink>)
+ informing us about this issue. (CVE-2005-0711)
</para>
</listitem>
@@ -9373,9 +9355,7 @@
<xref linkend="udf-aggr-calling"/>, and
<xref linkend="udf-security"/>. Thanks to Stefano Di Paola
<email>stefano.dipaola@stripped</email> for finding and
- informing us about this issue.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0709">CVE-2005-0709</ulink>,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0710">CVE-2005-0710</ulink>)
+ informing us about this issue. (CVE-2005-0709, CVE-2005-0710)
</para>
</listitem>
@@ -9954,8 +9934,7 @@
<command>mysqlaccess</command> script. Reported by Javier
Fernandez-Sanguino Pena and
<ulink url="http://www.debian.org/security/audit">Debian
- Security Audit Team</ulink>.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0004">CVE-2005-0004</ulink>)
+ Security Audit Team</ulink>. (CVE-2005-0004)
</para>
</listitem>
@@ -11817,8 +11796,7 @@
<literal>MERGE</literal> tables (even one
<literal>MERGE</literal> table and <literal>MyISAM</literal>
tables), that could have resulted in a crash or hang of the
- server. (Bug #2408,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0837">CVE-2004-0837</ulink>)
+ server. (Bug #2408, CVE-2004-0837)
</para>
</listitem>
@@ -12410,9 +12388,8 @@
<para>
Fixed a bug in authentication code that allowed a malicious
user to bypass password verification with specially crafted
- packets, using a modified client library.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0627">CVE-2004-0627</ulink>,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0628">CVE-2004-0628</ulink>)
+ packets, using a modified client library. (CVE-2004-0627,
+ CVE-2004-0628)
</para>
</listitem>
@@ -12429,8 +12406,7 @@
Fixed potential memory overrun in
<literal>mysql_real_connect()</literal> (which required a
compromised DNS server and certain operating systems). (Bug
- #4017,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0836">CVE-2004-0836</ulink>)
+ #4017, CVE-2004-0836)
</para>
</listitem>
@@ -12737,8 +12713,7 @@
<literal>[mysqld]</literal> section in
<filename>my.cnf</filename> or compiled in), not in
<filename>/tmp</filename>. Thanks to Christian Hammers from
- Debian Security Team for reporting this.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0388">CVE-2004-0388</ulink>)
+ Debian Security Team for reporting this. (CVE-2004-0388)
</para>
</listitem>
@@ -13281,7 +13256,7 @@
<para>
Fixed a symlink vulnerability in the
<filename>mysqlbug</filename> script. (Bug #3284,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0381">CVE-2004-0381</ulink>)
+ CVE-2004-0381)
</para>
</listitem>
@@ -13332,8 +13307,7 @@
<listitem>
<para>
Fixed bug in privilege checking of <literal>ALTER TABLE
- RENAME</literal>. (Bug #3270,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0835">CVE-2004-0835</ulink>)
+ RENAME</literal>. (Bug #3270, CVE-2004-0835)
</para>
</listitem>
@@ -14817,8 +14791,7 @@
<para>
Fixed a bug that under certain circumstances could allow a
privilege escalation via database wildcards in
- <literal>GRANT</literal>. (Bug #3924,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0957">CVE-2004-0957</ulink>)
+ <literal>GRANT</literal>. (Bug #3924, CVE-2004-0957)
</para>
</listitem>
@@ -15023,7 +14996,7 @@
<para>
New more secure client authentication based on 45-byte
passwords in the <literal>user</literal> table.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0981">CVE-2000-0981</ulink>)
+ (CVE-2000-0981)
</para>
</listitem>
Modified: trunk/refman-5.0/news-5.0.xml
===================================================================
--- trunk/refman-5.0/news-5.0.xml 2007-10-11 17:02:06 UTC (rev 8063)
+++ trunk/refman-5.0/news-5.0.xml 2007-10-11 19:56:07 UTC (rev 8064)
Changed blocks: 18, Lines Added: 25, Lines Deleted: 46; 9200 bytes
@@ -992,9 +992,8 @@
possibly other platforms using case-sensitive filesystems, it
was possible for a user granted rights on a database to create
or access a database whose name differed only from that of the
- first by the case of one or more letters.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4226">CVE-2006-4226</ulink>,
- Bug #17647)
+ first by the case of one or more letters. (CVE-2006-4226, Bug
+ #17647)
</para>
</listitem>
@@ -1004,9 +1003,7 @@
routine created by one user and then made accessible to a
different user using <literal>GRANT EXECUTE</literal> could be
executed by that user with the privileges of the routine's
- definer.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4227">CVE-2006-4227</ulink>,
- Bug #18630)
+ definer. (CVE-2006-4227, Bug #18630)
</para>
</listitem>
@@ -2822,9 +2819,8 @@
<replaceable>m</replaceable>. If this behavior is undesirable,
you can start the server with the new
<option>--skip-merge</option> option to disable the
- <literal>MERGE</literal> storage engine.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4031">CVE-2006-4031</ulink>,
- Bug #15195)
+ <literal>MERGE</literal> storage engine. (CVE-2006-4031, Bug
+ #15195)
</para>
</listitem>
@@ -4398,8 +4394,7 @@
<para>
A <literal>NUL</literal> byte within a comment in a statement
string caused the rest of the string not to be written to the
- query log, allowing logging to be bypassed.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0903">CVE-2006-0903</ulink>,
+ query log, allowing logging to be bypassed. (CVE-2006-0903,
Bug #17667)
</para>
</listitem>
@@ -4599,8 +4594,7 @@
encoding processing. The bug was in the server, incorrectly
parsing the string escaped with the
<literal>mysql_real_escape_string()</literal> C API function.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2753">CVE-2006-2753</ulink>,
- Bug #8378)
+ (CVE-2006-2753, Bug #8378)
</para>
<para>
@@ -4854,9 +4848,7 @@
<literal>COM_TABLE_DUMP</literal> packets was able to read
uninitialized memory, which potentially, though unlikely in
MySQL, could have led to an information disclosure.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1516">CVE-2006-1516</ulink>,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1517">CVE-2006-1517</ulink>)
- Thanks to Stefano Di Paola
+ (CVE-2006-1516, CVE-2006-1517) Thanks to Stefano Di Paola
<email>stefano.dipaola@stripped</email> for finding and
reporting this bug.
</para>
@@ -4867,8 +4859,7 @@
<emphasis role="bold">Security fix</emphasis>: A malicious
client, using specially crafted invalid
<literal>COM_TABLE_DUMP</literal> packets was able to trigger
- an exploitable buffer overflow on the server.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1518">CVE-2006-1518</ulink>)
+ an exploitable buffer overflow on the server. (CVE-2006-1518)
Thanks to Stefano Di Paola
<email>stefano.dipaola@stripped</email> for finding and
reporting this bug.
@@ -4879,11 +4870,10 @@
<para>
<emphasis role="bold">Security fix</emphasis>: Invalid
arguments to <literal>DATE_FORMAT()</literal> caused a server
- crash.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3469">CVE-2006-3469</ulink>,
- Bug #20729) Thanks to Jean-David Maillefer for discovering and
- reporting this problem to the Debian project and to Christian
- Hammers from the Debian Team for notifying us of it.
+ crash. (CVE-2006-3469, Bug #20729) Thanks to Jean-David
+ Maillefer for discovering and reporting this problem to the
+ Debian project and to Christian Hammers from the Debian Team
+ for notifying us of it.
</para>
</listitem>
@@ -6919,8 +6909,7 @@
<listitem>
<para>
<literal>STR_TO_DATE(1,NULL)</literal> caused a server crash.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3081">CVE-2006-3081</ulink>,
- Bug #15828)
+ (CVE-2006-3081, Bug #15828)
</para>
</listitem>
@@ -11884,9 +11873,8 @@
<para>
Security improvement: Applied a patch that addresses a
potential <literal>zlib</literal> data vulnerability that
- could result in an application crash.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1849">CVE-2005-1849</ulink>)
- This only affects the binaries for platforms that are linked
+ could result in an application crash. (CVE-2005-1849) This
+ only affects the binaries for platforms that are linked
statically against the bundled zlib (most notably Microsoft
Windows and HP-UX).
</para>
@@ -12249,9 +12237,8 @@
<para>
Security improvement: Applied a patch that addresses a
<literal>zlib</literal> data vulnerability that could result
- in a buffer overflow and code execution.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2096">CVE-2005-2096</ulink>)
- (Bug #11844)
+ in a buffer overflow and code execution. (CVE-2005-2096) (Bug
+ #11844)
</para>
</listitem>
@@ -13442,8 +13429,7 @@
<emphasis role="bold">Note</emphasis>: Although this bug was
thought to be fixed previously, it was later discovered to be
present in the MySQL 5.0.7-beta release for Windows. (Bug
- #9148,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0799">CVE-2005-0799</ulink>
+ #9148, CVE-2005-0799
</para>
<remark>
@@ -13961,8 +13947,7 @@
<para>
Security improvement: Applied a patch to fix a UDF
library-loading vulnerability that could result in a buffer
- overflow and code execution.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2558">CVE-2005-2558</ulink>)
+ overflow and code execution. (CVE-2005-2558)
</para>
</listitem>
@@ -14769,8 +14754,7 @@
<filename>mysql_install_db.X</filename> file with a
predictable filename and insecure permissions, which allowed
local users to execute arbitrary SQL commands by modifying the
- file's contents.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1636">CVE-2005-1636</ulink>)
+ file's contents. (CVE-2005-1636)
</para>
</listitem>
@@ -16137,8 +16121,7 @@
files only if a file with the same name does not already
exist. Thanks to Stefano Di Paola
<email>stefano.dipaola@stripped</email> for finding and
- informing us about this issue.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0711">CVE-2005-0711</ulink>)
+ informing us about this issue. (CVE-2005-0711)
</para>
</listitem>
@@ -16168,9 +16151,7 @@
<xref linkend="udf-aggr-calling"/>, and
<xref linkend="udf-security"/>. Thanks to Stefano Di Paola
<email>stefano.dipaola@stripped</email> for finding and
- informing us about this issue.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0709">CVE-2005-0709</ulink>,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0710">CVE-2005-0710</ulink>)
+ informing us about this issue. (CVE-2005-0709, CVE-2005-0710)
</para>
</listitem>
@@ -17597,8 +17578,7 @@
<command>mysqlaccess</command> script. Reported by Javier
Fernandez-Sanguino Pena and
<ulink url="http://www.debian.org/security/audit">Debian
- Security Audit Team</ulink>.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0004">CVE-2005-0004</ulink>)
+ Security Audit Team</ulink>. (CVE-2005-0004)
</para>
</listitem>
@@ -18868,8 +18848,7 @@
Fixed potential memory overrun in
<literal>mysql_real_connect()</literal> (which required a
compromised DNS server and certain operating systems). (Bug
- #4017,
- <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0836">CVE-2004-0836</ulink>)
+ #4017, CVE-2004-0836)
</para>
</listitem>
Modified: trunk/refman-5.0/releasenotes-cs-5.0.xml
===================================================================
--- trunk/refman-5.0/releasenotes-cs-5.0.xml 2007-10-11 17:02:06 UTC (rev 8063)
+++ trunk/refman-5.0/releasenotes-cs-5.0.xml 2007-10-11 19:56:07 UTC (rev 8064)
Changed blocks: 1, Lines Added: 1, Lines Deleted: 3; 731 bytes
@@ -1069,9 +1069,7 @@
<emphasis role="bold">Security fix</emphasis>: If a stored
routine was declared using <literal>SQL SECURITY
INVOKER</literal>, a user who invoked the routine could gain
- privileges.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2692">CVE-2007-2692</ulink>,
- Bug #27337)
+ privileges. (CVE-2007-2692, Bug #27337)
</para>
</listitem>
Modified: trunk/refman-5.0/releasenotes-es-5.0.xml
===================================================================
--- trunk/refman-5.0/releasenotes-es-5.0.xml 2007-10-11 17:02:06 UTC (rev 8063)
+++ trunk/refman-5.0/releasenotes-es-5.0.xml 2007-10-11 19:56:07 UTC (rev 8064)
Changed blocks: 7, Lines Added: 11, Lines Deleted: 22; 3871 bytes
@@ -1997,8 +1997,7 @@
<emphasis role="bold">Security fix</emphasis>: A malformed
password packet in the connection protocol could cause the
server to crash. Thanks for Dormando for reporting this bug
- and providing details and a proof of concept.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3780">CVE-2007-3780</ulink>,
+ and providing details and a proof of concept. (CVE-2007-3780,
Bug #28984)
</para>
</listitem>
@@ -2008,9 +2007,7 @@
<emphasis role="bold">Security Fix</emphasis>: <literal>CREATE
TABLE LIKE</literal> did not require any privileges on the
source table. Now it requires the <literal>SELECT</literal>
- privilege.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3781">CVE-2007-3781</ulink>,
- Bug #25578)
+ privilege. (CVE-2007-3781, Bug #25578)
</para>
<para>
@@ -2951,9 +2948,7 @@
<para>
<emphasis role="bold">Security fix</emphasis>: Use of a view
could allow a user to gain update privileges for tables in
- other databases.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3782">CVE-2007-3782</ulink>,
- Bug #27878)
+ other databases. (CVE-2007-3782, Bug #27878)
</para>
</listitem>
@@ -2962,9 +2957,7 @@
<emphasis role="bold">Security fix</emphasis>: If a stored
routine was declared using <literal>SQL SECURITY
INVOKER</literal>, a user who invoked the routine could gain
- privileges.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2692">CVE-2007-2692</ulink>,
- Bug #27337)
+ privileges. (CVE-2007-2692, Bug #27337)
</para>
</listitem>
@@ -2972,9 +2965,8 @@
<para>
<emphasis role="bold">Security fix</emphasis>: The requirement
of the <literal>DROP</literal> privilege for <literal>RENAME
- TABLE</literal> was not being enforced.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2691">CVE-2007-2691</ulink>,
- Bug #27515)
+ TABLE</literal> was not being enforced. (CVE-2007-2691, Bug
+ #27515)
</para>
</listitem>
@@ -4550,8 +4542,7 @@
<para>
Evaluation of an <literal>IN()</literal> predicate containing
a decimal-valued argument caused a server crash.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2583">CVE-2007-2583</ulink>)
- (Bug #27362, Bug #27513)
+ (CVE-2007-2583) (Bug #27362, Bug #27513)
</para>
</listitem>
@@ -5538,12 +5529,10 @@
<emphasis role="bold">Security fix</emphasis>: Using an
<literal>INFORMATION_SCHEMA</literal> table with
<literal>ORDER BY</literal> in a subquery could cause a server
- crash.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1420">CVE-2007-1420</ulink>,
- Bug #24630, Bug #26556) We would like to thank Oren Isacson
- from Flowgate Security Consulting as well as well as Stefan
- Streichsbier from SEC Consult for informing us about this
- problem.
+ crash. (CVE-2007-1420, Bug #24630, Bug #26556) We would like
+ to thank Oren Isacson from Flowgate Security Consulting as
+ well as well as Stefan Streichsbier from SEC Consult for
+ informing us about this problem.
</para>
</listitem>
Modified: trunk/refman-5.1/news-5.1.xml
===================================================================
--- trunk/refman-5.1/news-5.1.xml 2007-10-11 17:02:06 UTC (rev 8063)
+++ trunk/refman-5.1/news-5.1.xml 2007-10-11 19:56:07 UTC (rev 8064)
Changed blocks: 17, Lines Added: 26, Lines Deleted: 63; 9190 bytes
@@ -4210,8 +4210,7 @@
<emphasis role="bold">Security fix</emphasis>: A malformed
password packet in the connection protocol could cause the
server to crash. Thanks for Dormando for reporting this bug
- and providing details and a proof of concept.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3780">CVE-2007-3780</ulink>,
+ and providing details and a proof of concept. (CVE-2007-3780,
Bug #28984)
</para>
</listitem>
@@ -4221,9 +4220,7 @@
<emphasis role="bold">Security Fix</emphasis>: <literal>CREATE
TABLE LIKE</literal> did not require any privileges on the
source table. Now it requires the <literal>SELECT</literal>
- privilege.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3781">CVE-2007-3781</ulink>,
- Bug #25578)
+ privilege. (CVE-2007-3781, Bug #25578)
</para>
<para>
@@ -5631,9 +5628,7 @@
<para>
<emphasis role="bold">Security fix</emphasis>: Use of a view
could allow a user to gain update privileges for tables in
- other databases.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3782">CVE-2007-3782</ulink>,
- Bug #27878)
+ other databases. (CVE-2007-3782, Bug #27878)
</para>
</listitem>
@@ -7255,9 +7250,7 @@
<emphasis role="bold">Security fix</emphasis>: If a stored
routine was declared using <literal>SQL SECURITY
INVOKER</literal>, a user who invoked the routine could gain
- privileges.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2692">CVE-2007-2692</ulink>,
- Bug #27337)
+ privileges. (CVE-2007-2692, Bug #27337)
</para>
</listitem>
@@ -7265,9 +7258,8 @@
<para>
<emphasis role="bold">Security fix</emphasis>: The requirement
of the <literal>DROP</literal> privilege for <literal>RENAME
- TABLE</literal> was not being enforced.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2691">CVE-2007-2691</ulink>,
- Bug #27515)
+ TABLE</literal> was not being enforced. (CVE-2007-2691, Bug
+ #27515)
</para>
</listitem>
@@ -7277,8 +7269,7 @@
only the <literal>ALTER</literal> privilege on a partitioned
table could obtain information about the table that should
require the <literal>SELECT</literal> privilege.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2693">CVE-2007-2693</ulink>,
- Bug #23675)
+ (CVE-2007-2693, Bug #23675)
</para>
</listitem>
@@ -8934,8 +8925,7 @@
<para>
Evaluation of an <literal>IN()</literal> predicate containing
a decimal-valued argument caused a server crash.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2583">CVE-2007-2583</ulink>)
- (Bug #27362, Bug #27513)
+ (CVE-2007-2583) (Bug #27362, Bug #27513)
</para>
</listitem>
@@ -10952,12 +10942,10 @@
<emphasis role="bold">Security fix</emphasis>: Using an
<literal>INFORMATION_SCHEMA</literal> table with
<literal>ORDER BY</literal> in a subquery could cause a server
- crash.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1420">CVE-2007-1420</ulink>,
- Bug #24630, Bug #26556) We would like to thank Oren Isacson
- from Flowgate Security Consulting as well as well as Stefan
- Streichsbier from SEC Consult for informing us about this
- problem.
+ crash. (CVE-2007-1420, Bug #24630, Bug #26556) We would like
+ to thank Oren Isacson from Flowgate Security Consulting as
+ well as well as Stefan Streichsbier from SEC Consult for
+ informing us about this problem.
</para>
</listitem>
@@ -18746,11 +18734,8 @@
possibly other platforms using case-sensitive filesystems, it
was possible for a user granted rights on a database to create
or access a database whose name differed only from that of the
- first by the case of one or more letters.
- (<ulink
- url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4226"
- >CVE-2006-4226</ulink>,
- Bug #17647)
+ first by the case of one or more letters. (CVE-2006-4226, Bug
+ #17647)
</para>
</listitem>
@@ -18767,9 +18752,8 @@
<replaceable>m</replaceable>. If this behavior is undesirable,
you can start the server with the new
<option>--skip-merge</option> option to disable the
- <literal>MERGE</literal> storage engine.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4031">CVE-2006-4031</ulink>,
- Bug #15195)
+ <literal>MERGE</literal> storage engine. (CVE-2006-4031, Bug
+ #15195)
</para>
</listitem>
@@ -18779,11 +18763,7 @@
routine created by one user and then made accessible to a
different user using <literal>GRANT EXECUTE</literal> could be
executed by that user with the privileges of the routine's
- definer.
- (<ulink
- url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4227"
- >CVE-2006-4227</ulink>,
- Bug #18630)
+ definer. (CVE-2006-4227, Bug #18630)
</para>
</listitem>
@@ -23339,8 +23319,7 @@
encoding processing. The bug was in the server, incorrectly
parsing the string escaped with the
<literal>mysql_real_escape_string()</literal> C API function.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2753">CVE-2006-2753</ulink>,
- Bug #8378)
+ (CVE-2006-2753, Bug #8378)
</para>
<para>
@@ -24044,13 +24023,7 @@
<literal>COM_TABLE_DUMP</literal> packets was able to read
uninitialized memory, which potentially, though unlikely in
MySQL, could have led to an information disclosure.
- (<ulink
- url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1516"
- >CVE-2006-1516</ulink>,
- <ulink
- url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1517"
- >CVE-2006-1517</ulink>)
- Thanks to Stefano Di Paola
+ (CVE-2006-1516, CVE-2006-1517) Thanks to Stefano Di Paola
<email>stefano.dipaola@stripped</email> for finding and
reporting this bug.
</para>
@@ -24061,10 +24034,7 @@
<emphasis role="bold">Security fix</emphasis>: A malicious
client, using specially crafted invalid
<literal>COM_TABLE_DUMP</literal> packets was able to trigger
- an exploitable buffer overflow on the server.
- (<ulink
- url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1518"
- >CVE-2006-1518</ulink>)
+ an exploitable buffer overflow on the server. (CVE-2006-1518)
Thanks to Stefano Di Paola
<email>stefano.dipaola@stripped</email> for finding and
reporting this bug.
@@ -24160,8 +24130,7 @@
<para>
A <literal>NUL</literal> byte within a comment in a statement
string caused the rest of the string not to be written to the
- query log, allowing logging to be bypassed.
- (<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0903">CVE-2006-0903</ulink>)
+ query log, allowing logging to be bypassed. (CVE-2006-0903)
(Bug #17667)
</para>
</listitem>
@@ -25239,13 +25208,10 @@
<para>
<emphasis role="bold">Security fix</emphasis>: Invalid
arguments to <literal>DATE_FORMAT()</literal> caused a server
- crash.
- (<ulink
- url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3469"
- >CVE-2006-3469</ulink>,
- Bug #20729) Thanks to Jean-David Maillefer for discovering and
- reporting this problem to the Debian project and to Christian
- Hammers from the Debian Team for notifying us of it.
+ crash. (CVE-2006-3469, Bug #20729) Thanks to Jean-David
+ Maillefer for discovering and reporting this problem to the
+ Debian project and to Christian Hammers from the Debian Team
+ for notifying us of it.
</para>
</listitem>
@@ -28047,10 +28013,7 @@
<listitem>
<para>
<literal>STR_TO_DATE(1,NULL)</literal> caused a server crash.
- (<ulink
- url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3081"
- >CVE-2006-3081</ulink>,
- Bug #15828)
+ (CVE-2006-3081, Bug #15828)
</para>
</listitem>
Modified: trunk/tools/bug-prep.pl
===================================================================
--- trunk/tools/bug-prep.pl 2007-10-11 17:02:06 UTC (rev 8063)
+++ trunk/tools/bug-prep.pl 2007-10-11 19:56:07 UTC (rev 8064)
Changed blocks: 2, Lines Added: 4, Lines Deleted: 0; 683 bytes
@@ -3,6 +3,8 @@
# of DocBook output formatting. Uses regex similar to that in
# chunk-manual-for-web.
+# Also expand CVE-dddd-dddd into a link to the online CVE report.
+
# Paul DuBois
# paul@stripped
# 2005-06-15
@@ -14,6 +16,8 @@
# create links to bugs
s!Bug\s*\#(\d+)!<ulink url="http://bugs.mysql.com/$1">Bug#$1</ulink>!ig;
+# create links to CVE issues
+s!(CVE-\d+-\d+)!<ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=$1">$1</ulink>!ig;
print;
| Thread |
|---|
| • svn commit - mysqldoc@docsrva: r8064 - in trunk: . refman-4.1 refman-5.0 refman-5.1 tools | paul | 11 Oct |
