From owner-cvs-all@FreeBSD.ORG Fri Sep 19 07:48:00 2003 Return-Path: Delivered-To: cvs-all@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0DBC216A4B3; Fri, 19 Sep 2003 07:48:00 -0700 (PDT) Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115]) by mx1.FreeBSD.org (Postfix) with ESMTP id 90B3443FDD; Fri, 19 Sep 2003 07:47:59 -0700 (PDT) (envelope-from mbr@FreeBSD.org) Received: from repoman.freebsd.org (localhost [127.0.0.1]) by repoman.freebsd.org (8.12.9/8.12.9) with ESMTP id h8JElxXJ010676; Fri, 19 Sep 2003 07:47:59 -0700 (PDT) (envelope-from mbr@repoman.freebsd.org) Received: (from mbr@localhost) by repoman.freebsd.org (8.12.9/8.12.9/Submit) id h8JElxdA010675; Fri, 19 Sep 2003 07:47:59 -0700 (PDT) (envelope-from mbr) Message-Id: <200309191447.h8JElxdA010675@repoman.freebsd.org> From: Martin Blapp Date: Fri, 19 Sep 2003 07:47:59 -0700 (PDT) To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org X-FreeBSD-CVS-Branch: HEAD Subject: cvs commit: ports/databases/mysql323-server Makefile distinfo ports/databases/mysql323-server/files patch-ag X-BeenThere: cvs-all@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: CVS commit messages for the entire tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Sep 2003 14:48:00 -0000 mbr 2003/09/19 07:47:59 PDT FreeBSD ports repository Modified files: databases/mysql323-server Makefile distinfo databases/mysql323-server/files patch-ag Log: Security update to 3.23.58. Fixed buffer overflow in password handling which could potentially be exploited by MySQL users with ALTER privilege on the mysql.user table to execute random code or to gain shell access with the UID of the mysqld process. The complete changelog can be found at: http://www.mysql.com/doc/en/News-3.23.58.html Approved by: marcus (portsmgr) Revision Changes Path 1.162 +1 -1 ports/databases/mysql323-server/Makefile 1.69 +1 -1 ports/databases/mysql323-server/distinfo 1.24 +2 -11 ports/databases/mysql323-server/files/patch-ag