Showing all 149 (Edit, Save, CSV, Feed) |
ID# | Date | Updated | Type | Status | Sev | Version | OS | CPU | Summary |
---|---|---|---|---|---|---|---|---|---|
58166 | 2010-11-12 17:52 | 2010-11-12 18:14 | MySQL Server: Security: Privileges | Not a Bug (5114 days) | S3 | 5.5.7 | Any | Any | PROXY_PRIV not fully implemented |
57061 | 2010-09-28 10:31 | 2011-02-16 23:44 | MySQL Server: Security: Privileges | Closed (5110 days) | S3 | 5.1.52-bzr, 5.5.7-bzr | Any | Any | User without privilege on routine can discover its existence. |
57551 | 2010-10-19 6:40 | 2011-02-16 23:44 | MySQL Server: Security: Privileges | Closed (5081 days) | S3 | 5.5.7-rc | Any | Any | Live upgrade fails between 5.1.52 -> 5.5.7-rc |
57916 | 2010-11-02 8:46 | 2011-02-16 23:44 | MySQL Server: Security: Privileges | Closed (5066 days) | S3 | 5.5.7 | Any | Any | Fix the naming of the proxy_priv table |
58119 | 2010-11-10 16:49 | 2011-02-16 23:44 | MySQL Server: Security: Privileges | Closed (5085 days) | S3 | 5.5.7 | Linux (Centos 5.5 x86_64) | Any | Typo in warning on log: [Warning] 'proxes_priv' entry |
68527 | 2013-02-28 17:40 | 2013-03-07 8:37 | MySQL Server: Security: Privileges | Not a Bug (4268 days) | S3 | 5.5.20, 5.5.31, 5.6.11, 5.7.1, 5.1.69, 5.0.97 | Any | Any | "show grants for ..." output is not stable |
70114 | 2013-08-22 1:38 | 2013-08-22 8:20 | MySQL Server: Security: Privileges | Verified (4100 days) | S3 | 5.1.61, 5.1.71, 5.5.33, 5.6.13, 5.7.2-m12 | Any | Any | MySQL Permissions - Renaming a TEMPORARY table requires DROP privilege |
70465 | 2013-09-29 21:40 | 2013-10-14 18:14 | MySQL Server: Security: Privileges | Not a Bug (4047 days) | S3 | 5.6.15, 5.7.4, 5.5.35, 5.1.73, 5.0.94 | Any | Any | Spurious definer warning |
70928 | 2013-11-16 13:42 | 2013-11-18 10:30 | MySQL Server: Security: Privileges | Verified (4012 days) | S3 | 5.6.14, 5.7.2-m12 | Any | Any | Error message erroneously claims that SELECT from P_S table is denied |
71548 | 2014-02-01 10:23 | 2014-02-12 16:15 | MySQL Server: Security: Privileges | Closed (3926 days) | S3 | 5.7.3 | Any | Any | 5.7.3 upgrade documentation and mysql_upgrade (--skip-grant-tables) |
74713 | 2014-11-06 12:44 | 2014-11-07 8:21 | MySQL Server: Security: Privileges | Verified (3658 days) | S3 | 5.6, 5.7, 5.6.22 | Any | Any | Inconsistent error codes returned on lack of access for EXPLAIN UPDATE with view |
74733 | 2014-11-07 13:02 | 2014-11-07 16:14 | MySQL Server: Security: Privileges | Verified (3658 days) | S3 | 5.5, 5.6, 5.7 | Any | Any | SELECT privilege is not checked for views on UPDATE which references to columns |
74738 | 2014-11-07 15:10 | 2014-11-07 16:52 | MySQL Server: Security: Privileges | Verified (3658 days) | S3 | 5.5, 5.6, 5.7 | Any | Any | Multi-table DELETE rejected due to lack of SELECT privilege for no good reason |
74847 | 2014-11-14 0:57 | 2014-11-19 12:58 | MySQL Server: Security: Privileges | Closed (3647 days) | S3 | 5.7.5 | Any | Any | global variable grant_option is unused |
75118 | 2014-12-05 16:28 | 2014-12-09 20:08 | MySQL Server: Security: Privileges | Verified (3626 days) | S3 | 5.6, 5.5.42, 5.6.23, 5.7.6 | Linux (n.a.) | Any | Misleading error message when WITH GRANT OPTION privilege is missing |
75375 | 2015-01-01 11:14 | 2015-01-01 13:26 | MySQL Server: Security: Encryption | Verified (3603 days) | S3 | 5.7.6 | Any | Any | self assignment |
72442 | 2014-04-24 17:29 | 2015-02-02 11:42 | MySQL Server: Security: Privileges | Verified | S4 | 5.7.5 | Any | Any | binlog off, still see warning: Did not write failed .. into binary log while.... |
75905 | 2015-02-15 9:51 | 2015-02-15 9:51 | MySQL Server: Security: Privileges | Open | S4 | 5.7 | Any | Any | Option to initialize with random password and store the password in .mylogin.cnf |
75906 | 2015-02-15 10:11 | 2015-02-15 10:12 | MySQL Server: Security: Privileges | Open | S4 | 5.7 | Any | Any | Add validate password function |
75928 | 2015-02-17 9:42 | 2015-02-18 5:54 | MySQL Server: Security: Privileges | Duplicate (3555 days) | S2 | 5.7.6-m16 | Any | Any | Set password syntax not accepted |
76085 | 2015-03-01 9:27 | 2015-03-01 9:27 | MySQL Server: Security: Privileges | Open | S4 | 5.7.6-m16 | Any | Any | default user for show create user |
76465 | 2015-03-23 21:19 | 2015-03-23 21:45 | MySQL Server: Security: Privileges | Not a Bug (3522 days) | S3 | 5.7.6 | Any | Any | SHOW GRANTS no longer shows password information in 5.7.6 |
72829 | 2014-06-02 2:02 | 2015-03-27 14:52 | MySQL Server: Security: Privileges | Closed (3518 days) | S5 | 5.7.4-m14 | Linux | Any | LOCK_grant is major contention point, leaves 30-40% idle CPU. |
72760 | 2014-05-27 6:40 | 2015-03-30 13:04 | MySQL Server: Security: Privileges | Closed (3518 days) | S3 | 5.7.5 | Any | Any | SERVER NOT ACCEPTING SOME CONNECTIONS WHEN OFFLINE_MODE IS ON |
75723 | 2015-02-02 11:12 | 2015-04-07 14:57 | MySQL Server: Security: Privileges | Closed (3528 days) | S3 | 5.7 | Any | Any | Ensure 5.7 supports smooth live upgrade from 5.6 |
76048 | 2015-02-25 12:52 | 2015-04-07 22:06 | MySQL Server: Security: Privileges | Closed (3526 days) | S3 | 5.7.6 | Any | Any | IDENTIFIED BY PASSWORD is not deprecated for alter user but doesn't work |
76074 | 2015-02-27 7:32 | 2015-04-07 22:14 | MySQL Server: Security: Privileges | Closed (3507 days) | S3 | 5.7.6 | Any | Any | users with old-password=1 changed to mysql_native_password after upgrade |
74297 | 2014-10-09 12:42 | 2015-04-08 21:05 | MySQL Server: Security: Privileges | Closed (3506 days) | S4 | 5.7 | Any | Any | create user with plugin and password |
76744 | 2015-04-18 13:15 | 2015-04-21 15:08 | MySQL Server: Security: Privileges | Not a Bug (3493 days) | S3 | 5.7.4-m14 | Linux | Any | password has expired |
75408 | 2015-01-05 9:07 | 2015-04-27 11:35 | MySQL Server: Security: Audit | Closed (3513 days) | S3 | 5.6.21, 5.6.22, 5.7.6, 5.5.41 | Any | Any | Audit log version not increased |
77035 | 2015-05-14 4:20 | 2015-05-28 17:41 | MySQL Server: Security: Encryption | Closed (3456 days) | S2 | 5.7.8 | Any | Any | mysql_ssl_rsa_setup creates client-cert.pem with incorrect CN |
77256 | 2015-06-05 9:44 | 2015-06-05 11:11 | MySQL Server: Security: Audit | Verified (3448 days) | S3 | 5.6,5.7, 5.6.25, 5.7.7 | Any | Any | Unclear (incorrect ?) audit plugin notifications for stored procedures |
77271 | 2015-06-07 16:11 | 2015-06-19 5:51 | MySQL Server: Security: Privileges | Verified (3434 days) | S4 | 5.7.7 | Any | Any | Information about client certificate missing |
77567 | 2015-06-30 16:23 | 2015-07-01 8:28 | MySQL Server: Security: Firewall | Verified (3422 days) | S3 | 5.6.24, 5.6.27, 5.7.8 | Any | Any | Firewall SP definitions are sensitive to sql_mode setting |
77511 | 2015-06-26 15:54 | 2015-07-19 21:08 | MySQL Server: Security: Firewall | Closed (3404 days) | S3 | 5.6.24, 5.6.27, 5.7.8 | Any | Any | Cannot set mysql_firewall_trace at runtime |
79293 | 2015-11-16 11:43 | 2015-11-20 8:17 | MySQL Server: Security: Privileges | Verified (3280 days) | S4 | 5.7.9 | Any | Any | Comment on a user |
79093 | 2015-11-03 10:32 | 2015-11-23 16:29 | MySQL Server: Security: Audit | Verified (3277 days) | S3 | 5.7.9 | Any | Any | MYSQL_AUDIT_SERVER_SHUTDOWN_CLASS should be documented as non-terminable |
79277 | 2015-11-13 18:41 | 2015-12-14 14:31 | MySQL Server: Security: Privileges | Closed (3256 days) | S2 | 5.7.3+ | Any | Any | ALTER USER/SET PASSWORD do not work for --init-file execution |
79774 | 2015-12-25 8:42 | 2015-12-29 11:31 | MySQL Server: Security: Privileges | Verified (3241 days) | S3 | 5.7.10, 5.7.11 | Any | Any | super_read_only as a server option does not also set read_only |
77277 | 2015-06-09 9:45 | 2016-01-12 17:43 | MySQL Server: Security: Privileges | Closed (3227 days) | S4 | 5.7.7 | Any | Any | default_password_lifetime should be set 0 as implicit default value |
79999 | 2016-01-15 9:20 | 2016-01-20 16:46 | MySQL Server: Security: Privileges | Closed (3219 days) | S3 | 5.7.11 | Any | Any | ALTER USER IDENTIFIED WITH ‘auth_pam’ disables user account |
80077 | 2016-01-20 14:18 | 2016-01-22 16:11 | MySQL Server: Security: Encryption | Closed (3217 days) | S3 | 5.7.11 | Any | Any | mysqld --verbose --help tries to initialize keyring file |
80174 | 2016-01-27 11:36 | 2016-01-27 12:24 | MySQL Server: Security: Audit | Verified (3212 days) | S3 | 5.7.10 | Any | Any | Some LOCK TABLES errors skip MYSQL_AUDIT_QUERY_STATUS_END audit notification |
75918 | 2015-02-16 13:27 | 2016-02-02 19:40 | MySQL Server: Security: Privileges | Closed (3364 days) | S3 | 5.7.6 | Any | Any | mysqld --init-file doesn\'t accept grant statements |
75927 | 2015-02-17 8:52 | 2016-02-02 19:41 | MySQL Server: Security: Privileges | Closed (3548 days) | S3 | 5.7.6 | Any | Any | SET PASSWORD=PASSWORD(...) SHOULD be supported, but deprecated. |
75955 | 2015-02-18 13:41 | 2016-02-02 19:45 | MySQL Server: Security: Privileges | Closed (3463 days) | S3 | 5.7.6 | Any | Any | replace_user_table() does not check error when reading from mysql.user |
76018 | 2015-02-24 8:02 | 2016-02-02 19:54 | MySQL Server: Security: Privileges | Closed (3506 days) | S3 | 5.7.6 | Any | Any | unable to login with user whose pwd changed from 5.6.23 mysqladmin in 5.7.6 |
79091 | 2015-11-03 9:45 | 2016-02-24 23:17 | MySQL Server: Security: Audit | Closed (3184 days) | S3 | 5.7.9 | Any | Any | MYSQL_AUDIT_SERVER_STARTUP_CLASS event termination should improve diagnostics |
79092 | 2015-11-03 9:52 | 2016-02-24 23:18 | MySQL Server: Security: Audit | Closed (3184 days) | S3 | 5.7.9 | Any | Any | my_message fails to abort MYSQL_AUDIT_SERVER_STARTUP_CLASS event |
79328 | 2015-11-18 14:08 | 2016-02-24 23:22 | MySQL Server: Security: Privileges | Closed (3184 days) | S2 | 5.7.9, 5.7.11 | Any | Any | super_read_only broken as a server option |
76560 | 2015-04-01 14:34 | 2016-02-25 12:24 | MySQL Server: Security: Privileges | Closed (3500 days) | S2 | 5.7.7 | Any | Any | CREATE USER binlog events include new ACCOUNT keyword |
76641 | 2015-04-09 14:34 | 2016-02-25 12:24 | MySQL Server: Security: Privileges | Verified | S3 | 5.7.7 | Any | Any | Inconsistent quoting of @@session.proxy_user |
76911 | 2015-05-01 20:13 | 2016-02-25 12:24 | MySQL Server: Security: Privileges | Closed (3471 days) | S2 | 5.7.7 | Any | Any | ALTER USER rewrite causes differences on slave |
77860 | 2015-07-28 15:21 | 2016-02-25 12:24 | MySQL Server: Security: Privileges | Closed (3325 days) | S3 | 5.7.8 | Any | Any | Prevent account management statements from injecting account attributes |
76680 | 2015-04-13 19:44 | 2016-02-25 12:24 | MySQL Server: Security: Encryption | Verified | S3 | 5.7.7 | Any | Any | No ability to view complete allowed cipher list |
76778 | 2015-04-21 16:28 | 2016-02-25 12:24 | MySQL Server: Security: Encryption | Closed (3473 days) | S3 | 5.7.7 | Any | Any | SSL and RSA key material expiration should be extended |
77078 | 2015-05-18 21:23 | 2016-02-25 12:24 | MySQL Server: Security: Encryption | Closed (3430 days) | S3 | 5.7.8 | Any | Any | --ssl-cipher option causes SSL initialization failure |
80413 | 2016-02-17 15:28 | 2016-03-01 15:24 | MySQL Server: Security: Encryption | Closed (3179 days) | S3 | 5.7 | Any | Any | --early-plugin-load should have emtpy default value |
80414 | 2016-02-17 15:50 | 2016-03-07 15:02 | MySQL Server: Security: Encryption | Closed (3176 days) | S3 | 5.7.11 | Any | Any | a typo in plugin_keyring.h |
80860 | 2016-03-25 10:35 | 2016-03-26 5:14 | MySQL Server: Security: Privileges | Verified (3153 days) | S3 | 5.7, 5.7.11, 5.6.29 | Linux | Any | Strange behaviour for PASSWORD function in 5.7 |
80572 | 2016-03-01 9:32 | 2016-03-28 13:27 | MySQL Server: Security: Encryption | Closed (3162 days) | S3 | 5.7.12 | Any | Any | Taking pointer from temporary variable. |
79090 | 2015-11-03 9:02 | 2016-03-31 5:20 | MySQL Server: Security: Audit | Duplicate (3148 days) | S2 | 5.7.9 | Any | Any | my_message in MYSQL_AUDIT_GENERAL_CLASS handler crashes debug build |
79079 | 2015-11-02 15:59 | 2016-03-31 5:21 | MySQL Server: Security: Audit | Closed (3184 days) | S2 | 5.7.9 | Any | Any | Infinite recursion by calling my_message from MYSQL_AUDIT_GENERAL_CLASS handler |
81159 | 2016-04-20 14:38 | 2016-04-20 14:38 | MySQL Server: Security: Encryption | Open | S4 | 5.7.12 | Debian (Ubuntu Linux 12.04) | Any | MySQL TDE Encryption using OKV(Oracle Key Vault) Configuration Issues |
81404 | 2016-05-12 18:49 | 2016-05-13 8:53 | MySQL Server: Security: Privileges | Verified (3105 days) | S3 | 5.7.12 | Ubuntu | Any | misleading error message of alter user |
81425 | 2016-05-14 8:50 | 2016-05-16 4:14 | MySQL Server: Security: Privileges | Verified (3102 days) | S3 | 5.7.12 | CentOS | Any | Invalid timestamps are inserted into proxies_priv table |
80632 | 2016-03-07 8:06 | 2016-05-24 5:59 | MySQL Server: Security: Privileges | Duplicate (3094 days) | S3 | 5.7.11 | Any | Any | Enabling auth_socket with ALTER USER sets user as expired |
81621 | 2016-05-27 0:50 | 2016-06-02 12:07 | MySQL Server: Security: Privileges | Verified (3085 days) | S3 | 5.7, 5.7.12 | Debian | Any | GRANT privileges on db vs db table - Wildcard characters in db name - Escaping |
81783 | 2016-06-09 4:35 | 2016-06-09 4:35 | MySQL Server: Security: Privileges | Open | S4 | 5.7.13 | CentOS (7.0) | Any | grant privileges error |
76914 | 2015-05-03 8:55 | 2016-06-18 21:26 | MySQL Server: Security: Firewall | Closed (3458 days) | S3 | 5.6.24, 5.6.25, 5.7.8, 8.0.0 | Linux (OL6) | Any | non-existent users are added to firewall_users table despite giving error |
78374 | 2015-09-09 6:07 | 2016-06-18 21:27 | MySQL Server: Security: Privileges | Closed (3223 days) | S2 | 5.7.9, 8.0.0 | Any | Any | "CREATE USER IF NOT EXISTS" reports an error |
82118 | 2016-07-05 17:26 | 2016-07-06 14:27 | MySQL Server: Security: Audit | Verified (3051 days) | S3 | 5.7.13 | Any | Any | MYSQL_AUDIT_GENERAL_LOG event does not report database to audit plugins in 5.7 |
82174 | 2016-07-08 22:43 | 2016-07-08 22:43 | MySQL Server: Security: Privileges | Open | S4 | 5.7 | Any | Any | The limit of the length of a username is too small |
81897 | 2016-06-17 4:33 | 2016-07-29 23:19 | MySQL Server: Security: Audit | Closed (3028 days) | S3 | 5.7.13 | Any | Any | Can't connect to MySQL by using Workbench after configure MySQL Enterprise Audit |
81591 | 2016-05-25 10:19 | 2016-08-01 12:35 | MySQL Server: Security: Audit | Closed (3067 days) | S3 | 5.7.12 | Any | Any | Audit Log Filtering user is compared against USER() not CURRENT_USER() |
82452 | 2016-08-04 7:46 | 2016-08-04 8:29 | MySQL Server: Security: Encryption | Verified (3022 days) | S2 | 5.7.12-enterprise-commercial-advanced, 5.7.14 | Windows (Windows 7) | Any | CSV storage engine shouldn't have TDE option |
82465 | 2016-08-05 2:55 | 2016-08-05 5:20 | MySQL Server: Security: Privileges | Duplicate (3021 days) | S2 | mysql Ver 14.14 Distrib 5.7.13, for Lin | Ubuntu (Linux mars 4.4.0-31-generic #50-Ubuntu SMP Wed Jul 13 00:07:12 UTC 2016 x86_64 x86_64 x86_64 GNU/Lin) | Any | Cannot create user account |
79622 | 2015-12-13 19:57 | 2016-08-05 5:20 | MySQL Server: Security: Privileges | Not a Bug (3246 days) | S2 | 5.7.9 | MacOS | Any | Create user ... identified by --- is placing password hash into Plugin column |
82733 | 2016-08-25 21:56 | 2016-08-27 8:10 | MySQL Server: Security: Privileges | Verified (2999 days) | S3 | 5.6, 5.7, 5.6.32 | Any | Any | Login errors after GRANT ON *.* in sql_mode PAD_CHAR_TO_FULL_LENGTH |
82974 | 2016-09-13 16:55 | 2016-09-22 10:27 | MySQL Server: Security: Privileges | Duplicate (2973 days) | S4 | 5.7.15 | Any | Any | CREATE USER error message is not clear |
83174 | 2016-09-27 13:53 | 2016-09-28 13:14 | MySQL Server: Security: Privileges | Verified (2967 days) | S3 | 5.7.12, 5.7.15 | Linux (na) | Any | set password with hash_string does not work as described |
76390 | 2015-03-19 12:15 | 2016-10-11 8:19 | MySQL Server: Security: Privileges | Verified (3526 days) | S3 | 5.5/5.6/5.7 | Any | Any | wrong privileges in SHOW FULL COLUMNS |
82052 | 2016-06-29 14:07 | 2016-11-16 16:48 | MySQL Server: Security: Audit | Closed (2918 days) | S3 | 5.7.13 | Any | Any | [Warning] Event 'MYSQL_AUDIT_CONNECTION_DISCONNECT' cannot be aborted. |
84325 | 2016-12-23 13:08 | 2017-01-26 19:19 | MySQL Server: Security: Audit | Duplicate (2847 days) | S3 | 5.7.17 | Any | Any | connection-control-plugin doesn't work if audit plugin is installed |
82473 | 2016-08-05 12:28 | 2017-01-27 14:50 | MySQL Server: Security: Firewall | Closed (2867 days) | S3 | 5.7.14 | Any | Any | firewall plugin stops recording events when audit_log installed |
79680 | 2015-12-16 20:54 | 2017-01-30 15:58 | MySQL Server: Security: Privileges | Closed (2843 days) | S2 | 5.7.10 | Any | Any | Long user names prevent stored procedure/function creation |
84668 | 2017-01-25 15:19 | 2017-01-31 13:29 | MySQL Server: Security: Encryption | Closed (2842 days) | S2 | 5.7.17 | Ubuntu (16.04) | Any | Can't configure keyring_file_data on new install |
84903 | 2017-02-09 8:25 | 2017-02-09 13:27 | MySQL Server: Security: Privileges | Can't repeat (2833 days) | S1 | 5.7.17 | CentOS (6.8) | Any | Getting access denied error while assigning Grant all privileges to a user |
75239 | 2014-12-16 21:08 | 2017-03-09 14:44 | MySQL Server: Security: Encryption | Closed (3162 days) | S4 | 5.6.22, 5.7.8 | Any | Any | Support for TLSv1.1 and TLSv1.2 |
82670 | 2016-08-21 12:07 | 2017-04-11 7:20 | MySQL Server: Security: Audit | Closed (2772 days) | S2 | 5.7.14 | Any (x86_64) | Any | Setting the null_audit_event_record causes segmentation fault |
86061 | 2017-04-24 21:42 | 2017-05-03 9:26 | MySQL Server: Security: Privileges | Verified (2750 days) | S3 | 5.7.18 | Any | Any | REQUIRE CIPHER doesn't work as documented |
83164 | 2016-09-27 9:18 | 2017-05-24 21:07 | MySQL Server: Security: Audit | Verified (2960 days) | S4 | 5.7 | Any | Any | MySQL Enterprise Audit does not log to syslog |
86464 | 2017-05-25 18:12 | 2017-05-25 22:08 | MySQL Server: Security: Privileges | Verified (2728 days) | S3 | 5.7/8.0 | Any | Any | INFORMATION_SCHEMA.TABLES missing performance_schema.session&global_variables |
70490 | 2013-10-02 12:24 | 2017-06-29 12:32 | MySQL Server: Security: Encryption | Closed (2693 days) | S3 | 5.6.12, 5.7 | Linux | Any | Suppression is too strict on some systems |
86944 | 2017-07-05 6:31 | 2017-07-05 6:31 | MySQL Server: Security: Privileges | Open | S4 | 5.7.18-15 | Any | Any | user which has the super privileges do not generate the binlog. |
87232 | 2017-07-28 6:50 | 2017-07-31 9:06 | MySQL Server: Security: Privileges | Not a Bug (2661 days) | S3 | 5.7.16 | Any | Any | the information in mysql.db is not clean after tablespace is dropped |
87420 | 2017-08-15 11:42 | 2017-08-25 11:57 | MySQL Server: Security: Privileges | Verified (2645 days) | S3 | 5.6.36, 5.6.37, 5.5.56, 5.7.19 | CentOS (7.3.1611) | Any | GRANTS using general and specific permissions |
87659 | 2017-09-04 16:38 | 2017-09-05 16:08 | MySQL Server: Security: Firewall | Verified (2625 days) | S3 | 5.7.19-enterprise-commercial-advanced | CentOS (CentOS Linux release 7.3.1611 (Core) ) | Any | ERROR 1406 (22001): Data too long for column 'result' at row 1 |
87674 | 2017-09-06 4:39 | 2017-09-06 6:02 | MySQL Server: Security: Privileges | Verified (2624 days) | S1 | 5.7.17, 5.6.37, 5.7.19 | Any | Any | Table 'user' was not locked with LOCK TABLES on FLUSH PRIVILEGES |
85025 | 2017-02-16 16:12 | 2017-10-11 13:37 | MySQL Server: Security: Encryption | Verified (2589 days) | S3 | 5.7.16 | Windows (2012) | Any | SSL based Connection failing when sha256_password plugin is set to default |
88197 | 2017-10-24 8:50 | 2017-10-29 16:04 | MySQL Server: Security: Encryption | Duplicate (2571 days) | S5 | 5.7 | Any | Any | Accelerated SHA1/SHA256 with ARMv8 Crypto Extensions |
88694 | 2017-11-29 10:51 | 2017-12-04 7:23 | MySQL Server: Security: Privileges | Verified (2539 days) | S3 | 5.7.20 | Any | Any | MySQL accepts wildcard for database name for table level grant but won't use it |
74880 | 2014-11-16 10:17 | 2018-01-13 18:52 | MySQL Server: Security: Privileges | Verified (2495 days) | S4 | 5.7 | Any | Any | Record last login timestamp per user |
80379 | 2016-02-15 22:22 | 2018-03-07 13:40 | MySQL Server: Security: Privileges | Not a Bug (2442 days) | S3 | 5.6.25, 5.7.17 | Any | Any | GRANT fails when table does not exist |
90165 | 2018-03-21 15:33 | 2018-03-22 11:20 | MySQL Server: Security: Encryption | Verified (2427 days) | S3 | 5.7.21 | Any | Any | General purpose keyring function truncates binary data |
90133 | 2018-03-20 1:37 | 2018-03-22 22:15 | MySQL Server: Security: Privileges | Duplicate (2427 days) | S3 | 5.7.21 | Any | Any | GRANT on particular table where database has an escape character is not allowed |
84531 | 2017-01-17 12:37 | 2018-04-06 13:46 | MySQL Server: Security: Encryption | Verified (2412 days) | S4 | 5.7 | Any | Any | Add auto_generate_certs=OFF like setting for sysv init and systemd |
89001 | 2017-12-21 9:01 | 2018-04-10 17:35 | MySQL Server: Security: Privileges | Closed (2408 days) | S3 | 5.7.19, 5.7.20 | Any | Any | MySQL aborts without proper error message on startup if grant tables are corrupt |
90524 | 2018-04-20 7:19 | 2018-05-14 6:43 | MySQL Server: Security: Audit | Verified (2374 days) | S2 | 5.7.22 | Linux (ubunut 14.04) | x86 | MySQL 5.7.22 crashes with MySQL Enterprise Audit plugin-in 5.7.21 |
80698 | 2016-03-11 0:11 | 2018-05-15 12:26 | MySQL Server: Security: Encryption | Duplicate (2373 days) | S3 | 5.7.10 | Any | Any | Handle chain of certificate in x509 authentication |
82935 | 2016-09-09 21:46 | 2018-06-13 12:16 | MySQL Server: Security: Encryption | Verified (2976 days) | S3 | 5.7.15 | Any | Any | Cipher ECDHE-RSA-AES128-GCM-SHA256 listed in man/Ssl_cipher_list, not supported |
90134 | 2018-03-20 2:26 | 2018-06-29 18:57 | MySQL Server: Security: Privileges | Not a Bug (2328 days) | S3 | 5.7.21 | Any | Any | Inconsistent behavior on granting privilege on wildcard database |
92000 | 2018-08-13 22:40 | 2018-08-14 6:11 | MySQL Server: Security: Privileges | Verified (2282 days) | S3 | 5.7.22, 5.7.23 | Any | Any | CREATE user doesn't validade password hash lenght |
88894 | 2017-12-13 9:24 | 2018-10-25 6:10 | MySQL Server: Security: Encryption | Not a Bug (2210 days) | S3 | 5.7.20 | Ubuntu | Any | keyring_file plugin reinstall is not setting keyring_file_data as blank |
88834 | 2017-12-08 11:41 | 2018-11-23 10:10 | MySQL Server: Security: Privileges | Duplicate (2181 days) | S5 | 5.7.20, 8.0.3 | Any | Any | Uneven slowdown on systems with many users |
93184 | 2018-11-14 9:14 | 2018-11-30 3:51 | MySQL Server: Security: Firewall | Closed (2174 days) | S3 | 5.7.17 - enterprise | Oracle Linux | Any | firewall plugin cannot work well when audit_log plugin active |
92997 | 2018-10-29 19:24 | 2018-12-03 16:22 | MySQL Server: Security: Encryption | No Feedback (2174 days) | S3 | 5.7 | Any | Any | Reads from log are not marked appropriately |
94287 | 2019-02-12 9:47 | 2019-02-13 11:48 | MySQL Server: Security: Privileges | Not a Bug (2099 days) | S4 | 5.7.21-log MySQL Community Server (GPL) | CentOS (Linux localhost.localdomain 3.10.0-693.el7.x86_64 #1 SMP Tue Aug 22 21:09:27 UTC 2017 x86_64 x86_64 ) | x86 | user must reset password as password_expired='Y' |
76178 | 2015-03-05 16:02 | 2019-03-31 0:57 | MySQL Server: Security: Privileges | Verified (3506 days) | S4 | 5.7.5-m15-log | Linux (CentOS 2.6.32-431.29.2.el6.x86_64 #1 SMP) | Any | Default values of ssl_cipher x509_issuer x509_subject NULL but field NOT NULL |
83822 | 2016-11-15 9:45 | 2019-05-04 10:06 | MySQL Server: Security: Privileges | Open | S4 | 5.7 | Any | Any | Confusing "ERROR 1133 (42000): Can't find any matching row in the user table" |
90824 | 2018-05-10 13:50 | 2019-06-08 12:49 | MySQL Server: Security: Privileges | Verified (1984 days) | S2 | 5.7.22 | FreeBSD (11.1-RELEASE-p8) | x86 | mysql_secure_installation.cc expires all passwords including internal ones |
95519 | 2019-05-24 9:04 | 2019-06-25 12:28 | MySQL Server: Security: Audit | Can't repeat (1967 days) | S3 | 5.7.25-28 | Ubuntu (14.14) | Any | Create a Denial of service |
88643 | 2017-11-24 12:18 | 2019-07-09 17:28 | MySQL Server: Security: Encryption | Won't fix (1953 days) | S3 | 5.7.20 | Any | Any | SSL connection error: protocol version mismatch |
84507 | 2017-01-15 13:05 | 2019-07-09 17:39 | MySQL Server: Security: Encryption | Won't fix (1953 days) | S3 | 5.7.17 | Any | Any | Server starts w/ unusable SSL context if server-cert.pemis expired |
94440 | 2019-02-22 9:08 | 2019-07-29 12:14 | MySQL Server: Security: Privileges | Closed (2009 days) | S3 | 5.7.23 | Linux | Any | some function problem while create an user |
88428 | 2017-11-09 22:29 | 2019-09-05 12:58 | MySQL Server: Security: Encryption | Won't fix (1895 days) | S2 | 5.7.20 | Ubuntu | Any | mysql_real_query hangs with EINTR errno (using YASSL) |
71271 | 2014-01-02 11:51 | 2019-09-20 3:53 | MySQL Server: Security: Privileges | Won't fix (1953 days) | S3 | 5.5.30, 5.6.15, 5.7.20, 8.0.3 | Any | Any | MySQL fails to load PKCS#8 private key with YaSSL |
79946 | 2016-01-13 6:14 | 2019-10-02 20:39 | MySQL Server: Security: Privileges | Won't fix (1868 days) | S4 | 5.7.10 | Any | Any | Be more explicit about rsa support in YaSSL based server |
96977 | 2019-09-23 13:44 | 2019-10-03 11:38 | MySQL Server: Security: Encryption | Not a Bug (1868 days) | S3 | 5.7.27 | Ubuntu (16.04.1) | Other | MySQL community edition table space encryption allows restore of DB without key |
97091 | 2019-10-02 20:56 | 2019-11-18 12:54 | MySQL Server: Security: Privileges | Verified (1832 days) | S2 | 5.7+ | Any | Any | COM_RESET_CONNECTION does not respect CLIENT_INTERACTIVE |
97693 | 2019-11-19 15:44 | 2019-11-21 5:00 | MySQL Server: Security: Privileges | Verified (1818 days) | S3 | 8.0.18, 5.7.28 | Any | Any | ALTER USER user IDENTIFIED BY 'password' broken by invalid authentication_string |
97735 | 2019-11-21 15:46 | 2020-02-04 17:35 | MySQL Server: Security: Privileges | Closed (1743 days) | S3 | 5.7.27, 5.7.28 | Any (CentOS 7) | Any | ALTER USER IF EXISTS ... WITH_MAX_USER_CONNECTIONS 9999 not applied correctly |
79304 | 2015-11-17 6:29 | 2020-02-11 4:56 | MySQL Server: Security: Audit | Analyzing (2364 days) | S3 | 5.6 5.7 8.0 | Any | Any | MySQL audit plugin receives bad row counts |
91994 | 2018-08-13 13:56 | 2020-03-04 14:09 | MySQL Server: Security: Audit | Verified (1714 days) | S4 | 5.7.23 | Red Hat (6/7) | Any | MySQL Enterprise Audit JSON log line separator |
79314 | 2015-11-17 14:08 | 2020-03-24 2:56 | MySQL Server: Security: Privileges | Verified (3282 days) | S3 | 5.7.9, 5.6.29 | Any | Any | HELP not allowed in sandbox |
81356 | 2016-05-09 18:38 | 2020-03-27 19:04 | MySQL Server: Security: Encryption | Verified (1691 days) | S3 | 5.7.12 | Any | Any | InnoDB Tablespace Encryption Not Supported for UNDO/REDO/BINLOGs |
100003 | 2020-06-26 11:18 | 2020-06-29 8:29 | MySQL Server: Security: Privileges | Verified (1597 days) | S3 | 8.0.20, 5.7.30 | Any | Any | EXPLAIN FOR CONNECTION seems to still require the SUPER privilege |
76769 | 2015-04-21 10:43 | 2020-10-20 11:08 | MySQL Server: Security: Privileges | Verified (1484 days) | S4 | 5.7, 8.0 | Any | Any | FLUSH PRIVILEGES should return a warning when no change is done to discourage it |
100743 | 2020-09-04 15:06 | 2021-01-24 10:40 | MySQL Server: Security: Privileges | Verified (1388 days) | S3 | 5.7.31, 8.0.21 | Any | Any | Additional privileges required to access CONNECTION_CONTROL_FAILED_LOGIN_ATTEMPT |
102378 | 2021-01-26 14:24 | 2021-01-27 10:26 | MySQL Server: Security: Privileges | Verified (1385 days) | S3 | 8.0.22 Enterprise, 5.7.33, 8.0.23 | Any | x86 | ALTER USER IF EXISTS ... ACCOUNT LOCK throws error with validate_password |
70451 | 2013-09-27 14:39 | 2021-02-07 11:43 | MySQL Server: Security: Privileges | Closed (4011 days) | S3 | 5.6.12, 5.6.13, 5.6.14, 5.7.2 | Any | Any | Password Validation Plugin doesn't play nice with the GRANT and REVOKE commads |
103035 | 2021-03-18 10:58 | 2021-03-18 12:43 | MySQL Server: Security: Encryption | Verified (1335 days) | S3 | 8.0.23, 5.7.33 | Windows | x86 | Wrong AES-128-CBC Encryption according to RFC for input length 16, 32,48, etc... |
91969 | 2018-08-10 16:20 | 2021-06-19 1:00 | MySQL Server: Security: Encryption | No Feedback (1242 days) | S4 | 5.7.17 | Any | Any | client certificate is being validated even if client authentication is disabled |
98495 | 2020-02-05 18:53 | 2021-11-29 20:43 | MySQL Server: Security: Privileges | Closed (1079 days) | S3 | 8.0.18, 5.7.28 | Linux | Any | Timestamp is not set to CURRENT_TIMESTAMP in mysql.tables_priv |
80636 | 2016-03-07 9:42 | 2022-01-19 7:29 | MySQL Server: Security: Privileges | Duplicate (1028 days) | S3 | 5.7.11 | Any | Any | CREATE USER IF NOT EXISTS throws error instead of warning |
106400 | 2022-02-08 2:52 | 2022-02-08 7:17 | MySQL Server: Security: Privileges | Verified (1008 days) | S3 | 5.7, 8.0 | Any (Fails on all 5.7 environments tested) | Any (Only tested amd64/i386) | Table-level REVOKE fails for a re-created user. |
84961 | 2017-02-13 0:23 | 2022-04-02 0:34 | MySQL Server: Security: Audit | Verified (2829 days) | S4 | 5.6, 5.7, 8.0 | Any | Any | Need timezone setting for audit log. |
91981 | 2018-08-11 13:02 | 2023-05-10 11:56 | MySQL Server: Security: Privileges | Verified (2274 days) | S3 | 5.6, 5.7, 8.0 | Any | Any | Inconsistent user@host definitions for definer/grantor/grantee columns |
110629 | 2023-04-06 16:40 | 2023-07-20 22:15 | MySQL Server: Security: Audit | Closed (481 days) | S3 | 5.7 | Any | Any | Contribution: mysql 5.7 audit plugin add examined_row_count/affected_row_co ... |
Showing all 149 (Edit, Save, CSV, Feed) |