Bug #6173 | One can circumvent missing UPDATE privileges if he has INSERT + SELECT privs | ||
---|---|---|---|
Submitted: | 20 Oct 2004 9:32 | Modified: | 20 Oct 2004 13:44 |
Reporter: | Dmitry Lenev | Email Updates: | |
Status: | Closed | Impact on me: | |
Category: | MySQL Server | Severity: | S2 (Serious) |
Version: | 4.1 | OS: | |
Assigned to: | Dmitry Lenev | CPU Architecture: | Any |
[20 Oct 2004 9:32]
Dmitry Lenev
[20 Oct 2004 13:44]
Dmitry Lenev
Thank you for your bug report. This issue has been committed to our source repository of that product and will be incorporated into the next release. If necessary, you can access the source repository and build the latest available version, including the bugfix, yourself. More information about accessing the source trees is available at http://www.mysql.com/doc/en/Installing_source_tree.html Additional info: ChangeSet 1.2042.47.1 2004/10/20 16:04:43 dlenev@brandersnatch.localdomain Fix for bug #6173 "One can circumvent missing UPDATE privilege if he has SELECT and INSERT privileges for table with primary key"