Hi! On Jul 28, Ben Ricker wrote: > > Our security guy ran across an exploit in all MySQL versions before the > June releases. I am trying to find information on how to patch to fix this > vulnerability but I cannot find anything on MySQL's site! It is kind of > ridiculous. I searched for "check_scramble", "zero-length comparison" and > even "vuneralibility" (the latter only had 7 hits). Has anyone seen better > information on how to patch 4.0.18 to fix this bug? > > Check out http://securitytracker.com/alerts/2004/Jul/1010645.html for more > information.
Did you notice at the above url: "Version(s): 4.1 prior to version 4.1.3; also version 5.0 " 4.0.18 is NOT vunerable. Regards, Sergei -- __ ___ ___ ____ __ / |/ /_ __/ __/ __ \/ / Sergei Golubchik <[EMAIL PROTECTED]> / /|_/ / // /\ \/ /_/ / /__ MySQL AB, Senior Software Developer /_/ /_/\_, /___/\___\_\___/ Osnabrueck, Germany <___/ www.mysql.com -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED]