Oracle has released details about the forthcoming version 5.1.47 of MySQL. While it is generally encouraged to provide information about the features in future releases of software, according to The H-Online, Oracle inadvertently made public information regarding security holes in the current version before fixing them.This puts current installations of MySQL at risk although not for long. some of the vulnerabilities include one where attackers with privileges on some tables to gain read/write privileges on other tables.  Other vulnerabilities include a buffer overflow and packet size bug.

More Information is available at here

{jcomments on}