MDVSA-2010:223

Nom du paquet
mysql
Date
2010-11-09
Advisory ID
MDVSA-2010:223
Affected versions
2010.0 x86_64 , 2010.1 i586 , 2010.0 i586 , 2009.1 i586 , 2009.1 x86_64 , 2010.1 x86_64

Problem description

Multiple vulnerabilities were discovered and corrected in mysql:

* During evaluation of arguments to extreme-value functions (such
as LEAST() and GREATEST()), type errors did not propagate properly,
causing the server to crash (CVE-2010-3833).

* The server could crash after materializing a derived table that
required a temporary table for grouping (CVE-2010-3834).

* A user-variable assignment expression that is evaluated in a logical
expression context can be precalculated in a temporary table for GROUP
BY. However, when the expression value is used after creation of the
temporary table, it was re-evaluated, not read from the table and a
server crash resulted (CVE-2010-3835).

* Pre-evaluation of LIKE predicates during view preparation could
cause a server crash (CVE-2010-3836).

* GROUP_CONCAT() and WITH ROLLUP together could cause a server crash
(CVE-2010-3837).

* Queries could cause a server crash if the GREATEST() or LEAST()
function had a mixed list of numeric and LONGBLOB arguments, and
the result of such a function was processed using an intermediate
temporary table (CVE-2010-3838).

* Queries with nested joins could cause an infinite loop in the
server when used from stored procedures and prepared statements
(CVE-2010-3839).

* The PolyFromWKB() function could crash the server when improper
WKB data was passed to the function (CVE-2010-3840).

The updated packages have been patched to correct these issues.

Updated packages

2010.0 x86_64

 a7a0791af18df2567be3d04cb269bda3  2010.0/x86_64/lib64mysql16-5.1.42-0.7mdv2010.0.x86_64.rpm
 1c0abda99b0c5ef8c6d4ea4dc1ec0812  2010.0/x86_64/lib64mysql-devel-5.1.42-0.7mdv2010.0.x86_64.rpm
 5a9cbe4274e28221eca9778caea9da01  2010.0/x86_64/lib64mysql-static-devel-5.1.42-0.7mdv2010.0.x86_64.rpm
 5d25d85ca90c1d592a321d8908295e18  2010.0/x86_64/mysql-5.1.42-0.7mdv2010.0.x86_64.rpm
 4d85c9d31f9f6b2a4f1fe3e9188e955e  2010.0/x86_64/mysql-bench-5.1.42-0.7mdv2010.0.x86_64.rpm
 85008a9e4aaa9d84b6cc580076be288b  2010.0/x86_64/mysql-client-5.1.42-0.7mdv2010.0.x86_64.rpm
 ec632cf44e14b9a818e1d03d4805d8d1  2010.0/x86_64/mysql-common-5.1.42-0.7mdv2010.0.x86_64.rpm
 fce974f9ab2db341b742397afa8e52b7  2010.0/x86_64/mysql-common-core-5.1.42-0.7mdv2010.0.x86_64.rpm
 1176454c6198e4b50fef3d300b2b0aab  2010.0/x86_64/mysql-core-5.1.42-0.7mdv2010.0.x86_64.rpm
 b6e6183f956a34fecaf19a2f8b5324cf  2010.0/x86_64/mysql-doc-5.1.42-0.7mdv2010.0.x86_64.rpm
 a2cf3984b5b48f61c62a44df59f14d2c  2010.0/x86_64/mysql-max-5.1.42-0.7mdv2010.0.x86_64.rpm
 b4cb0843ff9a5879aa323dc444dbb228  2010.0/x86_64/mysql-ndb-extra-5.1.42-0.7mdv2010.0.x86_64.rpm
 5edf6b6eec7dd140cb4790b5012b595d  2010.0/x86_64/mysql-ndb-management-5.1.42-0.7mdv2010.0.x86_64.rpm
 44ec600db127c7e462d63e015d13c7e9  2010.0/x86_64/mysql-ndb-storage-5.1.42-0.7mdv2010.0.x86_64.rpm
 c118f59b5f889f59c632f2f0f5764328  2010.0/x86_64/mysql-ndb-tools-5.1.42-0.7mdv2010.0.x86_64.rpm 
 31a55292b75cd0a1bee02aac9197e37a  2010.0/SRPMS/mysql-5.1.42-0.7mdv2010.0.src.rpm

2010.1 i586

 1a416a9f547eb55c801607b06c921ca5  2010.1/i586/libmysql16-5.1.46-4.2mdv2010.1.i586.rpm
 3b6b4a9fc9fe3f74d9735c65a1028093  2010.1/i586/libmysql-devel-5.1.46-4.2mdv2010.1.i586.rpm
 7f4b1831bcb40a898353d5bfbdf15102  2010.1/i586/libmysql-static-devel-5.1.46-4.2mdv2010.1.i586.rpm
 4989c0961ba2fa1835e2cc4e1d46098d  2010.1/i586/mysql-5.1.46-4.2mdv2010.1.i586.rpm
 ceba6c601615e2c168650141174669e0  2010.1/i586/mysql-bench-5.1.46-4.2mdv2010.1.i586.rpm
 64f5ddbca162be792fbcd7a8510e023f  2010.1/i586/mysql-client-5.1.46-4.2mdv2010.1.i586.rpm
 77f17c48c08d62b743cd105cb7338dd9  2010.1/i586/mysql-common-5.1.46-4.2mdv2010.1.i586.rpm
 f799d22bab301e27c7b8cb4496d21059  2010.1/i586/mysql-common-core-5.1.46-4.2mdv2010.1.i586.rpm
 ffdd1a28cab7f77314672240dc865350  2010.1/i586/mysql-core-5.1.46-4.2mdv2010.1.i586.rpm
 aa43641577a99042aaf6c302ce590a4d  2010.1/i586/mysql-plugin_pbxt-1.0.10-13.2mdv2010.1.i586.rpm
 d3af045d2e548ba1372c4d9d879d88f4  2010.1/i586/mysql-plugin_pinba-0.0.5-13.2mdv2010.1.i586.rpm
 b5c9cf616998915d01158c9022ad8247  2010.1/i586/mysql-plugin_revision-0.1-13.2mdv2010.1.i586.rpm
 a3b017a221e607e4bfbeeea7039141b1  2010.1/i586/mysql-plugin_sphinx-0.9.9-13.2mdv2010.1.i586.rpm
 9c857a669e11a4b3ec2acb4e6369e63c  2010.1/i586/mysql-plugin_spider-2.13-13.2mdv2010.1.i586.rpm 
 417e7f324ab7815f037267822bf83778  2010.1/SRPMS/mysql-5.1.46-4.2mdv2010.1.src.rpm

2010.0 i586

 e5504c9216682ecfa362b986b50e67bc  2010.0/i586/libmysql16-5.1.42-0.7mdv2010.0.i586.rpm
 33563d8cf9329dad3480511d89d2f90f  2010.0/i586/libmysql-devel-5.1.42-0.7mdv2010.0.i586.rpm
 617d51dbf63c61142d7f2d94ba0d6140  2010.0/i586/libmysql-static-devel-5.1.42-0.7mdv2010.0.i586.rpm
 627a87ae6f3ba4ca8b141822f33669e3  2010.0/i586/mysql-5.1.42-0.7mdv2010.0.i586.rpm
 218e7f5b26953613b78b9c4c14fee172  2010.0/i586/mysql-bench-5.1.42-0.7mdv2010.0.i586.rpm
 654133dfff89a9c3af227f085959ec6b  2010.0/i586/mysql-client-5.1.42-0.7mdv2010.0.i586.rpm
 e863dec49820612c4650b3c086faa90c  2010.0/i586/mysql-common-5.1.42-0.7mdv2010.0.i586.rpm
 57f5626c82fd35de3d4af2842ee3ce6d  2010.0/i586/mysql-common-core-5.1.42-0.7mdv2010.0.i586.rpm
 accbd97c043da5eae1348c8dc10259f4  2010.0/i586/mysql-core-5.1.42-0.7mdv2010.0.i586.rpm
 70b2ade6fc38b150ef6f9e9b2978acc5  2010.0/i586/mysql-doc-5.1.42-0.7mdv2010.0.i586.rpm
 987e4f98e242b8aaf16973467b939387  2010.0/i586/mysql-max-5.1.42-0.7mdv2010.0.i586.rpm
 f4da9cf30391c117220ceaad9604aaf6  2010.0/i586/mysql-ndb-extra-5.1.42-0.7mdv2010.0.i586.rpm
 23ec71d9002a443aac52aac883d1bbb9  2010.0/i586/mysql-ndb-management-5.1.42-0.7mdv2010.0.i586.rpm
 5b15230c7f80f7bacdfd3482dce7dac7  2010.0/i586/mysql-ndb-storage-5.1.42-0.7mdv2010.0.i586.rpm
 4a3579c353a7c8d3ecc91ae92e5422cb  2010.0/i586/mysql-ndb-tools-5.1.42-0.7mdv2010.0.i586.rpm 
 31a55292b75cd0a1bee02aac9197e37a  2010.0/SRPMS/mysql-5.1.42-0.7mdv2010.0.src.rpm

2009.1 i586

 c24fb902d05f9106dd7b62d7bf7c961e  2009.1/i586/libmysql16-5.1.42-0.7mdv2009.1.i586.rpm
 9906c87fbd2c5653d14e307ca6cb8396  2009.1/i586/libmysql-devel-5.1.42-0.7mdv2009.1.i586.rpm
 7549265a5c2c1f812a4bcff401468167  2009.1/i586/libmysql-static-devel-5.1.42-0.7mdv2009.1.i586.rpm
 2d5c4c004fb36b096f2162f3cc54a828  2009.1/i586/mysql-5.1.42-0.7mdv2009.1.i586.rpm
 61b53b422cd8a9d63014f9fee9af1974  2009.1/i586/mysql-bench-5.1.42-0.7mdv2009.1.i586.rpm
 02f151c312608d8d56f9494f20908a8c  2009.1/i586/mysql-client-5.1.42-0.7mdv2009.1.i586.rpm
 a97b68d21ed4dd412ce960960c93eab8  2009.1/i586/mysql-common-5.1.42-0.7mdv2009.1.i586.rpm
 5cda25980548ccfde2261781eb6790e3  2009.1/i586/mysql-doc-5.1.42-0.7mdv2009.1.i586.rpm
 5b5f3444c6d2905c904b8bbda929a721  2009.1/i586/mysql-max-5.1.42-0.7mdv2009.1.i586.rpm
 71b29aa05beb90ed4b2d82fddfbe2656  2009.1/i586/mysql-ndb-extra-5.1.42-0.7mdv2009.1.i586.rpm
 b6e47c4d9d14797e2fe886a5de0f4fdd  2009.1/i586/mysql-ndb-management-5.1.42-0.7mdv2009.1.i586.rpm
 50c738ab7f802e8ba2df8eb3bf1a6fbb  2009.1/i586/mysql-ndb-storage-5.1.42-0.7mdv2009.1.i586.rpm
 93a807c4646a31e1cc4bb3886c089e9b  2009.1/i586/mysql-ndb-tools-5.1.42-0.7mdv2009.1.i586.rpm 
 089921dec5b57917a3b42b3165e260eb  2009.1/SRPMS/mysql-5.1.42-0.7mdv2009.1.src.rpm

2009.1 x86_64

 fb1064832c231c168afd50a0d79bc4dd  2009.1/x86_64/lib64mysql16-5.1.42-0.7mdv2009.1.x86_64.rpm
 a58727f9e04d17c3587076470ddb35da  2009.1/x86_64/lib64mysql-devel-5.1.42-0.7mdv2009.1.x86_64.rpm
 52a5213b49fb99a67c2c3c693c5610c1  2009.1/x86_64/lib64mysql-static-devel-5.1.42-0.7mdv2009.1.x86_64.rpm
 2c8620f213952d425ff67a70d96091a9  2009.1/x86_64/mysql-5.1.42-0.7mdv2009.1.x86_64.rpm
 b9909bc2b87297f7c8cee7fcac2d3ead  2009.1/x86_64/mysql-bench-5.1.42-0.7mdv2009.1.x86_64.rpm
 e48643fe42c2ebd534da6f67d9adf38b  2009.1/x86_64/mysql-client-5.1.42-0.7mdv2009.1.x86_64.rpm
 d35e8889430bf446d6e1b1e8f43f72d7  2009.1/x86_64/mysql-common-5.1.42-0.7mdv2009.1.x86_64.rpm
 1304778f16541d60db286239bcbe6ef2  2009.1/x86_64/mysql-doc-5.1.42-0.7mdv2009.1.x86_64.rpm
 f5b5c8ab8c104c7f28e8719f094dad95  2009.1/x86_64/mysql-max-5.1.42-0.7mdv2009.1.x86_64.rpm
 c579d63781e511ebc6bae4ac00a04b12  2009.1/x86_64/mysql-ndb-extra-5.1.42-0.7mdv2009.1.x86_64.rpm
 b8133d9838a341aa4ead1deedc33ee3d  2009.1/x86_64/mysql-ndb-management-5.1.42-0.7mdv2009.1.x86_64.rpm
 e6e68a5c779810cff0cb4a3850b344e2  2009.1/x86_64/mysql-ndb-storage-5.1.42-0.7mdv2009.1.x86_64.rpm
 1ea3d18d59f71bbf85325d4af19004c8  2009.1/x86_64/mysql-ndb-tools-5.1.42-0.7mdv2009.1.x86_64.rpm 
 089921dec5b57917a3b42b3165e260eb  2009.1/SRPMS/mysql-5.1.42-0.7mdv2009.1.src.rpm

2010.1 x86_64

 cbae583eea6535059521d261a9108372  2010.1/x86_64/lib64mysql16-5.1.46-4.2mdv2010.1.x86_64.rpm
 3c0a1bf40e3deabeebb0856767a7a812  2010.1/x86_64/lib64mysql-devel-5.1.46-4.2mdv2010.1.x86_64.rpm
 e291d41347025bca857a5f3ebd60ea91  2010.1/x86_64/lib64mysql-static-devel-5.1.46-4.2mdv2010.1.x86_64.rpm
 071bbbcbbd75c6cc6b08fc8595dfe132  2010.1/x86_64/mysql-5.1.46-4.2mdv2010.1.x86_64.rpm
 cdb12baea08bf52ef35170090014d35b  2010.1/x86_64/mysql-bench-5.1.46-4.2mdv2010.1.x86_64.rpm
 4f6bc67c5ad72eff5027356896f71a2c  2010.1/x86_64/mysql-client-5.1.46-4.2mdv2010.1.x86_64.rpm
 ade356e0ea897bc581f25f14679d69d7  2010.1/x86_64/mysql-common-5.1.46-4.2mdv2010.1.x86_64.rpm
 c46e894a38a8695fb0f4d6204ed28a7b  2010.1/x86_64/mysql-common-core-5.1.46-4.2mdv2010.1.x86_64.rpm
 2a72fbb0e0fd59ba01d1941ceee81dfe  2010.1/x86_64/mysql-core-5.1.46-4.2mdv2010.1.x86_64.rpm
 29eb971eeabdfb5109f57f16ce39ed45  2010.1/x86_64/mysql-plugin_pbxt-1.0.10-13.2mdv2010.1.x86_64.rpm
 dc2ccb2add4914ea8ba64c37c073ca7b  2010.1/x86_64/mysql-plugin_pinba-0.0.5-13.2mdv2010.1.x86_64.rpm
 82772692710157652b521a4268afd765  2010.1/x86_64/mysql-plugin_revision-0.1-13.2mdv2010.1.x86_64.rpm
 81aeb8c301e26ea65b601a8790b366b7  2010.1/x86_64/mysql-plugin_sphinx-0.9.9-13.2mdv2010.1.x86_64.rpm
 7c160860370ed3d8a58a11d04a8f6b3a  2010.1/x86_64/mysql-plugin_spider-2.13-13.2mdv2010.1.x86_64.rpm 
 417e7f324ab7815f037267822bf83778  2010.1/SRPMS/mysql-5.1.46-4.2mdv2010.1.src.rpm

References