List:Commits« Previous MessageNext Message »
From:paul Date:January 22 2008 3:31pm
Subject:svn commit - mysqldoc@docsrva: r9612 - in trunk: . dynamic-docs/changelog
View as plain text  
Author: paul
Date: 2008-01-22 16:31:30 +0100 (Tue, 22 Jan 2008)
New Revision: 9612

Log:
 r28692@frost:  paul | 2008-01-22 09:28:05 -0600
 Revise Bug#33814 wording.


Modified:
   trunk/dynamic-docs/changelog/mysqld-1.xml

Property changes on: trunk
___________________________________________________________________
Name: svk:merge
   - 4767c598-dc10-0410-bea0-d01b485662eb:/mysqldoc-local/mysqldoc/trunk:34985
7d8d2c4e-af1d-0410-ab9f-b038ce55645b:/mysqldoc-local/mysqldoc:28661
b5ec3a16-e900-0410-9ad2-d183a3acac99:/mysqldoc-local/mysqldoc/trunk:14218
bf112a9c-6c03-0410-a055-ad865cd57414:/mysqldoc-local/mysqldoc/trunk:23202
   + 4767c598-dc10-0410-bea0-d01b485662eb:/mysqldoc-local/mysqldoc/trunk:34985
7d8d2c4e-af1d-0410-ab9f-b038ce55645b:/mysqldoc-local/mysqldoc:28692
b5ec3a16-e900-0410-9ad2-d183a3acac99:/mysqldoc-local/mysqldoc/trunk:14218
bf112a9c-6c03-0410-a055-ad865cd57414:/mysqldoc-local/mysqldoc/trunk:23202


Modified: trunk/dynamic-docs/changelog/mysqld-1.xml
===================================================================
--- trunk/dynamic-docs/changelog/mysqld-1.xml	2008-01-22 15:12:40 UTC (rev 9611)
+++ trunk/dynamic-docs/changelog/mysqld-1.xml	2008-01-22 15:31:30 UTC (rev 9612)
Changed blocks: 2, Lines Added: 22, Lines Deleted: 8; 1810 bytes

@@ -5,28 +5,33 @@
   %all.entities;
 ]>
 <changelog>
-  
+
   <logentry entrytype="bug">
+
     <tags>
       <highlight type="cluster"/>
       <manual type="ndb_mgm"/>
     </tags>
+
     <bugs>
       <fixes bugid="30366"/>
     </bugs>
-    
+
     <versions>
       <version ver="5.1.23"/>
     </versions>
+
     <message>
+
       <para>
         The cluster management client could not connect, and would hang
         instead. This issue affected Mac OS X 64-bit only.
       </para>
+
     </message>
+
   </logentry>
-  
-  
+
   <logentry entrytype="bug">
 
     <tags>

@@ -5469,13 +5474,22 @@
     <message>
 
       <para>
-        yaSSL was subject to a pre-authentication buffer-overflow
-        exploit that could lead to remote code execution or a server
-        crash. The exploit requires a server with yaSSL enabled and
-        TCP/IP connections enabled. The exploit does not apply to
+        Three vulnerabilities in yaSSL versions 1.7.5 and earlier were
+        discovered that could lead to a server crash or execution of
+        unauthorized code. The exploit requires a server with yaSSL
+        enabled and TCP/IP connections enabled, but does not require
+        valid MySQL account credentials. The exploit does not apply to
         OpenSSL.
       </para>
 
+      <note>
+        <para>
+          The proof-of-concept exploit is freely available on the
+          Internet. Everyone with a vulnerable MySQL configuration is
+          advised to upgrade <emphasis>immediately</emphasis>.
+        </para>
+      </note>
+
     </message>
 
   </logentry>
Thread
svn commit - mysqldoc@docsrva: r9612 - in trunk: . dynamic-docs/changelogpaul22 Jan