Re: SECURITY HOLE in MySQL module in PHP

To: "Dmitry N. Hramtsov" <hdn@nsu.ru>
Cc: debian-security@lists.debian.org
Subject: Re: SECURITY HOLE in MySQL module in PHP
From: Noel Koethe <noel@koethe.net>
Date: Thu, 7 Feb 2002 14:31:21 +0100
Message-id: <[🔎] 20020207133121.GB7342@hopi.hostsharing.net>
In-reply-to: <[🔎] Pine.LNX.4.33.0202071410490.7145-100000@aurora.nsu.ru>
References: <[🔎] Pine.LNX.4.33.0202071410490.7145-100000@aurora.nsu.ru>

On Don, 07 Feb 2002, Dmitry N. Hramtsov wrote:

> As I can see this bug already fixed (Status: Closed) in PHP:
> http://bugs.php.net/bug.php?id=15375,
> so we should just wait for updated package from maintainer.

Maybe its a good idea to read the bug and why it is closed:

--8<--
[5 Feb 9:53am] zak@php.net

Verified that the exploit allows any file readable by the 
MySQL server to be viewed via this technique. Note that 
forbidding the MySQL user CREATE permission does make the 
exploit less convenient for the attacker.

The MySQL dev team is looking at ways to reduce this risk 
via MySQL permission behavior in the server.

Given Rasmus' feedback on the issue, I am closing this as 
a PHP bug. Hopefully, the MySQL dev team should be able 
eliminate or reduce this risk. If we can't completely 
resolve it, I will re-examine this bug.

--zak@[mysql|php].com
--8<--

-- 
	Noèl Köthe

Reply to:

Follow-Ups:
- Re: SECURITY HOLE in MySQL module in PHP
  - From: "Dmitry N. Hramtsov" <hdn@nsu.ru>

References:
- Re: SECURITY HOLE in MySQL module in PHP
  - From: "Dmitry N. Hramtsov" <hdn@nsu.ru>

Prev by Date: Re: SECURITY HOLE in MySQL module in PHP
Next by Date: Re: SECURITY HOLE in MySQL module in PHP
Previous by thread: Re: SECURITY HOLE in MySQL module in PHP
Next by thread: Re: SECURITY HOLE in MySQL module in PHP
Index(es):
- Date
- Thread