Bug #39778 need clarification when user see full content of INFORMATION_SCHEMA.%_PRIVILEGES
Submitted: 1 Oct 2008 15:30 Modified: 2 Oct 2008 15:21
Reporter: Andrii Nikitin Email Updates:
Status: Not a Bug Impact on me:
None 
Category:MySQL Server: Documentation Severity:S3 (Non-critical)
Version:5.0+ OS:Any
Assigned to: Jon Stephens CPU Architecture:Any
Tags: information_schema, mysql database, privileges

[1 Oct 2008 15:30] Andrii Nikitin 
Description:
Page http://dev.mysql.com/doc/refman/5.0/en/information-schema.html:
"
Each MySQL user has the right to access these tables, but can see only the rows in the tables that correspond to objects for which the user has the proper access privileges.
"

It should be mentioned here that User sees full output of "INFORMATION_SCHEMA.%_PRIVILEGES" if he has SELECT access to "mysql" database.

(So it is possible that user sees rows which are not granted to him/her, that contradicts to "objects for which the user has the proper access privileges".)

How to repeat:
see website

Suggested fix:
Add something like (please translate to English):

In case if user is granted with SELECT privilege to "mysql" database they will able to access full content of INFORMATION_SCHEMA.%_PRIVILEGES tables.
[1 Oct 2008 15:34] Jon Stephens 
Assigning to myself, don't see any real need for triage as it's a pretty straightforward and reasonable request, and the fix is not difficult or time-consuming.
[2 Oct 2008 15:21] Jon Stephens 
Andrii,

After some thought and discussion of this with others, I've come to the conclusion that this is neither necessary or desirable. See private comment for the reasons.

Thanks!