-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thursday 22 May 2003 15:15, Lenz Grimmer wrote: <snip>
Can you elaborate on "*the* MySQL vulnerability"? Which one? Would you mind mentioning the URLs?
Yes, I'm sorry. I realized a good while *after* my post that I should have given the URL he posted. Here it is-> http://bugs.mysql.com/bug.php?id=122
I'm not aware of an open issue - 3.23.55 fixed the security holes that were discovered by Stefan Esser from e-Matters.
In the future, we'd appreciate if you could send questions related to MySQL security to security@mysql.com - thanks in advance!
I'll do it, but this wasn't a question from *me*, I was trying to show this guy that the version in SuSE 8.2 *wasn't* affected. He was trying to prove his point by showing this URL-> http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0150 I tried to tell him that it was only a *candidate* for the possibility of being a full blown vulnerability...just as it says at the top of that site, but he keeps saying it's the real thing, even after I asked him to show me some other cite saying it's a vulnerability *besides* the URL above.
Bye, LenZ
John - -- A butterfly is: Pretty,soft,harmless...and useless, just like M$N. My Penguin and my Gecko eat butterflies. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2-rc1-SuSE (GNU/Linux) iD8DBQE+zY86H5oDXyLKXKQRAv7FAJ9Nq1659Csm9itzgDo+zSUvSoaY2ACfdPNc 7cPc61E8IxUHwrTZhswmtts= =Yn6D -----END PGP SIGNATURE-----