MySQL Forums
Forum List  »  Announcements

MySQL 4.0.27 has been released - Security Update
Posted by: Kent Boortz
Date: May 12, 2006 01:03PM

Hi,

MySQL 4.0.27, a new version of the popular Open Source Database
Management System, has been released. The Community Edition is now
available in source and binary form for a number of platforms from our
download pages at

http://dev.mysql.com/downloads/mysql/4.0.html
http://downloads.mysql.com/archives.php?p=mysql-4.0&v=4.0.27

and mirror sites.

This is a security fix release and bugfix release for the 4.0
production release family.

This MySQL 4.0.27 release includes the patches for recently reported
security vulnerabilities in the MySQL client-server protocol. We would
like to thank Stefano Di Paola <stefano.dipaola@wisec.it> for finding
and reporting these to us.

Functionality added or changed:

* The MySQL-server RPM now explicitly assigns the mysql system
user to the mysql user group during the post-installation
process. This corrects an issue with upgrading the server on
some Linux distributions whereby a previously existing mysql
user was not changed to the mysql group, resulting in wrong
groups for files created following the installation.
(Bug#12823: http://bugs.mysql.com/12823)

* Better detection of connection timeout for replication servers
on Windows allows elimination of extraneous Lost connection
errors in the error log.
(Bug#5588: http://bugs.mysql.com/5588)

Bugs fixed:

* Security fix: A malicious client, using specially crafted
invalid login or COM_TABLE_DUMP packets was able to read
uninitialized memory, which potentially, though unlikely in
MySQL, could have led to an information disclosure.
(CVE-2006-1516
(http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1516),
CVE-2006-1517
(http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1517))
Thanks to Stefano Di Paola stefano.dipaola@wisec.it for
finding and reporting this bug.

* MySQL-shared-compat-4.0.26-0.i386.rpm and 4.0.27 incorrectly
depend on glibc 2.3 and cannot not be installed on a glibc 2.2
system. For MySQL 4.0, we recommend using the older
MySQL-shared-compat-4.0.25-0.i386.rpm package.
(Bug#16539: http://bugs.mysql.com/16539)

* When myisamchk needed to rebuild a table, AUTO_INCREMENT
information was lost. (Bug#10405: http://bugs.mysql.com/10405)

* BIT_COUNT() could return an incorrect value for right table
columns in a LEFT JOIN.
(Bug#13044: http://bugs.mysql.com/13044)

* An UPDATE statement which tried to update a column with a name
beginning with an asterisk would cause the server to crash.
This was because the MySQL server would wrongly expand the '*'
character to the list of all table columns, causing the list of
columns to become longer than the list of values. Now the server
performs this expansion only if the '*' character is followed
by a space. (Bug#15610: http://bugs.mysql.com/15610)

* An INSERT ... SELECT statement between tables in a MERGE set
can return errors when statement involves insert into child
table from merge table or vice-versa.
(Bug#5390: http://bugs.mysql.com/5390)

* A LIMIT-related optimization failed to take into account that
MyISAM table indexes can be disabled, causing Error 124 when
it tried to use such an index.
(Bug#14616: http://bugs.mysql.com/14616)

* For a table that had been opened with HANDLER OPEN, issuing
OPTIMIZE TABLE, ALTER TABLE, or REPAIR TABLE caused a server
crash. (Bug#14397: http://bugs.mysql.com/14397)

* Queries of the form (SELECT ...) ORDER BY ... were being
treated as a UNION. This improperly resulted in only distinct
values being returned (because UNION by default eliminates
duplicate results). Also, references to column aliases in
ORDER BY clauses following parenthesized SELECT statements
were not resolved properly.
(Bug#7672: http://bugs.mysql.com/7672)

* SELECT DISTINCT with a GROUP BY clause caused a server crash.
(Bug#13855: http://bugs.mysql.com/13855)

* SHOW CREATE TABLE did not display any FOREIGN KEY clauses if a
temporary file could not be created. Now SHOW CREATE TABLE
displays an error message in an SQL comment if this occurs.
(Bug#13002: http://bugs.mysql.com/13002)

* MySQL programs in binary distributions for Solaris 8/9/10 x86
systems would not run on Pentium III machines.
(Bug#6772: http://bugs.mysql.com/6772)

* Queries against a MERGE table that has a composite index could
produce incorrect results.
(Bug#9112: http://bugs.mysql.com/9112)

* The counters for the Key_read_requests, Key_reads,
Key_write_requests, and Key_writes status variables were
changed from "unsigned long" to "unsigned long long" to
accommodate larger values before the variables
roll-over and restart from 0.
(Bug#12920: http://bugs.mysql.com/12920)

* A concurrency problem for CREATE ... SELECT could cause a
server crash. (Bug#12845: http://bugs.mysql.com/12845)

* On HP-UX 11.x (PA-RISC), the -L option caused "mysqlimport" to
crash. (Bug#12958: http://bugs.mysql.com/12958)

* The server crashed when one thread resized the query cache
while another thread was using it.
(Bug#12848: http://bugs.mysql.com/12848)

Bugs fixed (for problems building from source):

* Avoid trying to include <asm/atomic.h> when it doesn't work
in C++ code. (Bug#13621: http://bugs.mysql.com/13621)

* MySQL would not compile on Linux distributions that use the
"tinfo" library. (Bug#18912: http://bugs.mysql.com/18912)

* Fixed problems with static variables to allow building on
Fedora Core 3. (Bug#6554: http://bugs.mysql.com/6554)

kent

Kent Boortz, Release Staff Engineer
Oracle, the MySQL team, www.mysql.com



Edited 1 time(s). Last edit at 06/05/2006 05:47PM by Edwin DeSouza.

Options: ReplyQuote


Subject
Views
Written By
Posted
MySQL 4.0.27 has been released - Security Update
12403
May 12, 2006 01:03PM


Sorry, you can't reply to this topic. It has been closed.

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.