Test ID:	1.3.6.1.4.1.25623.1.0.67457
Category:	Fedora Local Security Checks
Title:	Fedora Core 12 FEDORA-2010-7414 (mysql)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to mysql announced via advisory FEDORA-2010-7414. MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon (mysqld) and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files. Update Information: Update to MySQL 5.1.46, for various fixes described at http://dev.mysql.com/doc/refman/5.1/en/news-5-1-46.html References: [ 1 ] Bug #590190 - CVE-2010-1621 MySQL UNINSTALL PLUGIN requires no privileges https://bugzilla.redhat.com/show_bug.cgi?id=590190 [ 2 ] Bug #553648 - mysql: table destruction via DATA/INDEX DIRECTORY directives using symlinks https://bugzilla.redhat.com/show_bug.cgi?id=553648 Solution: Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update mysql' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2010-7414 Risk factor : High CVSS Score: 6.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2008-7247 http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html BugTraq ID: 38043 http://www.securityfocus.com/bid/38043 http://www.mandriva.com/security/advisories?name=MDVSA-2010:044 https://bugzilla.redhat.com/show_bug.cgi?id=543619 http://lists.mysql.com/commits/59711 http://marc.info/?l=oss-security&m=125908040022018&w=2 http://secunia.com/advisories/38517 SuSE Security Announcement: SUSE-SR:2010:011 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html SuSE Security Announcement: SUSE-SR:2010:021 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html http://www.ubuntu.com/usn/USN-1397-1 http://ubuntu.com/usn/usn-897-1 http://www.vupen.com/english/advisories/2010/1107 Common Vulnerability Exposure (CVE) ID: CVE-2009-4019 37717 http://secunia.com/advisories/37717 38517 38573 http://secunia.com/advisories/38573 ADV-2010-1107 APPLE-SA-2010-03-29-1 DSA-1997 http://www.debian.org/security/2010/dsa-1997 FEDORA-2009-12180 https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00764.html RHSA-2010:0109 http://www.redhat.com/support/errata/RHSA-2010-0109.html SUSE-SR:2010:011 USN-1397-1 USN-897-1 [oss-security] 20091121 CVE Request - MySQL - 5.0.88 http://marc.info/?l=oss-security&m=125881733826437&w=2 [oss-security] 20091121 Re: CVE Request - MySQL - 5.0.88 http://marc.info/?l=oss-security&m=125883754215621&w=2 [oss-security] 20091123 Re: CVE Request - MySQL - 5.0.88 http://marc.info/?l=oss-security&m=125901161824278&w=2 http://bugs.mysql.com/47780 http://bugs.mysql.com/48291 http://dev.mysql.com/doc/refman/5.0/en/news-5-0-88.html http://dev.mysql.com/doc/refman/5.1/en/news-5-1-41.html http://support.apple.com/kb/HT4077 https://bugzilla.redhat.com/show_bug.cgi?id=540906 oval:org.mitre.oval:def:11349 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11349 oval:org.mitre.oval:def:8500 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8500 Common Vulnerability Exposure (CVE) ID: CVE-2010-1621 39543 http://www.securityfocus.com/bid/39543 MDVSA-2010:093 http://www.mandriva.com/security/advisories?name=MDVSA-2010:093 http://bugs.mysql.com/bug.php?id=51770 http://dev.mysql.com/doc/refman/5.1/en/news-5-1-46.html
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.