FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mysql-server -- insecure temporary file creation

Affected packages
4.1 < mysql-server < 4.1.12
5.0 < mysql-server < 5.0.6

Details

VuXML ID eeae6cce-d05c-11d9-9aed-000e0c2e438a
Discovery 2005-05-07
Entry 2005-07-09

A Zataz advisory reports that MySQL contains a security flaw which could allow a malicious local user to inject arbitrary SQL commands during the initial database creation process.

The problem lies in the mysql_install_db script which creates temporary files based on the PID used by the script.

References

Bugtraq ID 13660
CVE Name CVE-2005-1636
URL http://www.zataz.net/adviso/mysql-05172005.txt