[Librefm-discuss] Accounts security

librefm-discuss

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Librefm-discuss] Accounts security

From:	Gordon Haverland
Subject:	[Librefm-discuss] Accounts security
Date:	Mon, 11 Jun 2012 09:50:40 -0600
User-agent:	KMail/1.13.7 (Linux/3.2.0-2-686-pae; KDE/4.7.4; i686; ; )

I passed the following onto my LUG.  I thought it might be of 
interest here too.

---------------------------------
LXer.com is pointing to a H-Open article about a security problem 
with some MySQL|MariaDB installations.  Whether there is a problem 
or not, depends on which memcmp() function is being called.  The 
Linux glibc that is sse-optimised is effected by this.  %.1.61, 
5.2.11, 5.3.5 and 5.5.22 are potentially vulnerable.

Ubuntu 10.04, 10.10, 11.04, 11.10 and 12.04, OpenSuSE 12.1, Fedora 
16 (all those distributions being 64 bit)  and all "recent" Arch 
Linux look to be vulnerable.

http://LXer.com
http://www.h-online.com/open/news/item/Simple-authentication-
bypass-for-MySQL-root-revealed-1614990.html

Gord

[Prev in Thread]

Current Thread

[Next in Thread]

[Librefm-discuss] Accounts security, Gordon Haverland <=

Prev by Date: Re: [Librefm-discuss] Scrobbling libre to last - gmusicbrowser
Next by Date: [Librefm-discuss] (no subject)
Previous by thread: [Librefm-discuss] Scrobbling libre to last - gmusicbrowser
Next by thread: [Librefm-discuss] (no subject)
Index(es):
- Date
- Thread