From: Daevid Vincent Date: November 12 2010 10:12pm Subject: RE: FW: [USN-1017-1] MySQL vulnerabilities List-Archive: http://lists.mysql.com/mysql/223578 Message-Id: <46E89A5B5DBE42CB857A5D44796E107D@mascorp.com> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0CA3_01CB8273.9BA0FCE0" ------=_NextPart_000_0CA3_01CB8273.9BA0FCE0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit my point exactly. there is NONE. and if you don't patch your mysql as needed, then you will need a lot more help when you're hacked. ;-p http://lists.mysql.com/ _____ From: vegivamp@stripped [mailto:vegivamp@stripped] On Behalf Of Johan De Meersman Sent: Friday, November 12, 2010 12:18 PM To: Daevid Vincent Cc: mysql Subject: Re: FW: [USN-1017-1] MySQL vulnerabilities I suspect that that is because this is not a security list, but a general help list. If you want those things, you'll get them from either your vendor, bugtraq, or the mysql security-specific mailing list that undoubtedly exists somewhere. Don't ask me where, though - I'm not on it either :-) On Fri, Nov 12, 2010 at 8:02 PM, Daevid Vincent wrote: How come these kinds of notices are not sent to the mysql list? I realize this particular one is from Ubuntu, but the vulnerability is not ubuntu specific, it's mysql. Why aren't the mysql, er um, Oracle people more pro-active about letting us know these things? -- Bier met grenadyn Is als mosterd by den wyn Sy die't drinkt, is eene kwezel Hy die't drinkt, is ras een ezel ------=_NextPart_000_0CA3_01CB8273.9BA0FCE0--