thr3ads.net - Secure testing commits - [Secure-testing-commits] r19467

If this information is useful, please help other people find it:
Share via:

Henri Salo

2012-Jun-11 08:02 UTC

[Secure-testing-commits] r19467 - data/CVE

Author: fgeek-guest
Date: 2012-06-11 08:02:08 +0000 (Mon, 11 Jun 2012)
New Revision: 19467

Modified:
   data/CVE/list
Log:
Added details for MySQL authentication bypass CVE-2012-2122.

Modified: data/CVE/list
==================================================================---
data/CVE/list	2012-06-10 21:14:36 UTC (rev 19466)
+++ data/CVE/list	2012-06-11 08:02:08 UTC (rev 19467)
@@ -2855,8 +2855,11 @@
 CVE-2012-2123 (The cap_bprm_set_creds function in security/commoncap.c in the
Linux ...)
 	{DSA-2469-1}
 	- linux-2.6 3.2.16-1
-CVE-2012-2122
+CVE-2012-2122 [mysql authentication bypass]
 	RESERVED
+	- mysql-5.1 <unfixed>
+	NOTE:
https://www.secmaniac.com/blog/2012/06/11/massive-mysql-authentication-bypass-exploit/
+	NOTE: http://seclists.org/oss-sec/2012/q2/493
 CVE-2012-2121 (The KVM implementation in the Linux kernel before 3.3.4 does not
...)
 	- linux-2.6 3.2.17-1
 CVE-2012-2120 (latex2man in texlive-extra-utils 2011.20120322, and possibly
other ...)

Secure testing commits - Jun 2012 - r19467 - data/CVE

[Secure-testing-commits] r19467 - data/CVE