Showing 1-30 of 36 (Edit, Save, CSV, Feed) | Show Next 30 Entries » |
ID# | Date | Updated | Type | Status | Sev | Version | OS | CPU | Summary |
---|---|---|---|---|---|---|---|---|---|
75367 | 2014-12-31 13:02 | 2022-07-12 13:31 | MySQL Websites: bugs.mysql.com | Closed (626 days) | S3 | Any | Any | Enable secure communication by default for bugreports | |
59389 | 2011-01-10 8:01 | 2011-06-20 19:16 | MySQL Workbench: Administration | Closed (4666 days) | S3 | 5.2.31 CE GA | Windows (7 Pro x64, XP) | Any | Error message from Manage Security link |
61596 | 2011-06-22 8:18 | 2011-06-22 19:48 | MySQL Server: Information schema | Duplicate (4664 days) | S3 | >= 5.0 | Any | Any | Missing procs_priv equivalent table in INFORMATION_SCHEMA |
62089 | 2011-08-05 7:32 | 2011-08-05 8:09 | MySQL Server: Security: Privileges | Not a Bug (4620 days) | S3 | 5.0.45-log | Linux (2.6.18-92.1.22.el5) | Any | Password is dropped when granting privileges to a user at another host |
62363 | 2011-09-06 10:41 | 2011-10-12 23:00 | MySQL Server: Config Wizard | No Feedback (4552 days) | S3 | 5.5 | Windows (32-bit Professional Edition) | Any | Can't apply security settings |
64221 | 2012-02-03 16:38 | 2012-02-09 11:40 | Connector / ODBC | Verified (4433 days) | S1 | 5.1.10 | Windows | Any | MD5 checksums ODBC 5.1.10 do not match |
60191 | 2011-02-21 16:10 | 2013-04-02 14:13 | MySQL Server: Documentation | Closed (4014 days) | S2 | 5.5.9 | MacOS (10.6) | Any | Update OS X documentation to include installer bug workaround |
72158 | 2014-03-29 10:09 | 2014-08-17 12:31 | MySQL Server: Command-line Clients | Verified (3512 days) | S3 | 5.6.17 | Any | Any | Prevent logging of encryption functions |
74287 | 2014-10-09 1:43 | 2014-10-09 23:29 | MySQL Server: Security: Privileges | Closed (3459 days) | S1 | mysql-installer-community-5.6.21.1 | Windows | Any | MySQL Privileges |
53748 | 2010-05-18 12:30 | 2014-12-31 13:27 | MySQL Server: MyISAM storage engine | Verified (5055 days) | S3 | 5.1.46 | Linux (Fedora 12) | Any | INDEX/DATA DIRECTORY realpath(3) race allows access to server data dir |
75340 | 2014-12-30 14:49 | 2015-01-06 7:58 | MySQL Cluster Manager | Verified (3370 days) | S3 | 1.3.3 | Any | Any | Bind to localhost by default |
75408 | 2015-01-05 9:07 | 2015-04-27 11:35 | MySQL Server: Security: Audit | Closed (3285 days) | S3 | 5.6.21, 5.6.22, 5.7.6, 5.5.41 | Any | Any | Audit log version not increased |
76134 | 2015-03-03 16:27 | 2015-03-04 16:22 | MySQL Server: Security: Privileges | Not a Bug (3313 days) | S3 | 5.5.XX / 5.6.XX | Any | Any | Bypass missing grant privileges |
70744 | 2013-10-27 20:23 | 2015-03-09 13:38 | MySQL Server: Pluggable Authentication | Closed (3308 days) | S2 | 5.6.14, 5.6.21 | Any | Any | SHOW GRANTS should indicate a authentication plugin |
81986 | 2016-06-23 11:55 | 2016-08-12 14:07 | MySQL Server: Security: Audit | Closed (2786 days) | S3 | All | Any | Any | Potential security concern - SYSTEM variables can be EXECUTE'd. |
89104 | 2018-01-04 12:47 | 2018-01-05 18:56 | MySQL Server: Packaging | Closed (2275 days) | S3 | 8.0.3 | Any | Any | Fetch Boost library over a secure connection |
104621 | 2021-08-13 19:35 | 2021-08-17 11:47 | MySQL Server | Can't repeat (955 days) | S3 | 8.0.26 | Other (Official Docker image) | Any | MySQL 8.0.26: Access Denied during GRANT PROXY as root, when connected via TCP/I |
104778 | 2021-08-31 8:13 | 2023-01-04 18:20 | MySQL Server: C API (client library) | Closed (450 days) | S3 | 8.0.26 | Any | Any | Connection fail with FUTURE crypto policy |
43971 | 2009-03-31 6:22 | 2011-02-16 23:43 | MySQL Server: Documentation | Closed (5475 days) | S3 | 4.1+ | Any | Any | Manual for "symbolic-links-to-tables" should state restrictions |
26085 | 2007-02-05 15:05 | 2007-02-05 21:16 | MySQL Websites: bugs.mysql.com | Closed (6262 days) | S1 | 1 | Windows (Windows XP) | Any | XSS security hole on mysql.de |
28089 | 2007-04-25 9:35 | 2007-04-26 15:46 | MySQL Server: General | Not a Bug (6182 days) | S2 | 5.1 | Any | Any | Combination of FEDERATED and EVENTs allows for self-replicating worm |
28984 | 2007-06-08 18:48 | 2007-06-26 19:10 | MySQL Server: Parser | Closed (6121 days) | S1 | 4.1, 5.0, 5.1 | Any | Any | crasher on connect with out of range password length in protocol |
29066 | 2007-06-13 9:18 | 2007-07-09 19:47 | MySQL Enterprise Monitor: Server | Closed (6108 days) | S2 | 1.2.0.5934 | Any | Any | security problem: password in 'config.properties' not encrypted |
38700 | 2008-08-10 17:00 | 2011-02-16 23:43 | Connector / NET | Closed (5399 days) | S2 | 5.x.x | Any | Any | SSL Certificate Validation is Missing, Causing Security Vulnerability |
32167 | 2007-11-07 18:42 | 2011-02-16 23:43 | MySQL Server: MyISAM storage engine | Closed (5131 days) | S3 | any | Any | Any | another privilege bypass with DATA/INDEX DIRECTORY |
43287 | 2009-03-01 11:57 | 2011-02-16 23:43 | MySQL Workbench | Closed (5187 days) | S2 | 5.1,5.2 | Any (Ubuntu 8.10, MacOSX) | Any | mysql user's password exposed through mysql administrator |
43730 | 2009-03-18 15:12 | 2011-02-16 23:43 | MySQL Server: General | Won't fix (5418 days) | S3 | 6.0.11, 5.0, 5.1 bzr | Any | Any | There is no way to add new privileges to sql_acl code |
23658 | 2006-10-26 6:59 | 2006-10-26 8:19 | MySQL Server | Can't repeat (6364 days) | S3 | 5.1.11-beta | Linux (Linux) | Any | The "SOURCE" statement is not documented / cannot be found in HELP statement |
47320 | 2009-09-15 12:05 | 2011-02-16 23:44 | MySQL Server: C API (client library) | Closed (5215 days) | S1 | 4.1, 5.0, 5.1 (bzr) | Any | Any | OpenSSL client does not check YaSSL server certificate |
49178 | 2009-11-28 17:44 | 2011-02-16 23:44 | MySQL Workbench | Duplicate (5233 days) | S2 | 5.2.8 | MacOS (10.6.2) | Any | Mysql Workbench crash with "Manage Security" |
Showing 1-30 of 36 (Edit, Save, CSV, Feed) | Show Next 30 Entries » |