← Back to team overview

maria-discuss team mailing list archive

Thread
Date

Re: Critical Update for CVE-2016-6662

To: maria-discuss@xxxxxxxxxxxxxxxxxxx
From: Reindl Harald <h.reindl@xxxxxxxxxxxxx>
Date: Mon, 12 Sep 2016 23:18:07 +0200
In-reply-to: <289AF2D9893247839CFC1E47D02E3529@Neiroze>
Organization: the lounge interactive design
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.3.0


Am 12.09.2016 um 22:53 schrieb Reinis Rozitis:

how should that be possible from a daemon runnign with a restricted user?

Some distros run mysqld_safe under root which also reads the *.cnf files
(cowered in advisory)

mysqld_safe != mysqld != something a client interacts with
which distribution out there is running *mysqld* as root?

Follow ups

Re: Critical Update for CVE-2016-6662
From: Reinis Rozitis, 2016-09-12
Re: Critical Update for CVE-2016-6662
From: jocelyn fournier, 2016-09-12

References

Critical Update for CVE-2016-6662
From: Alex, 2016-09-12
Re: Critical Update for CVE-2016-6662
From: Sergei Golubchik, 2016-09-12
Re: Critical Update for CVE-2016-6662
From: Reindl Harald, 2016-09-12
Re: Critical Update for CVE-2016-6662
From: Alex, 2016-09-12
Re: Critical Update for CVE-2016-6662
From: Reindl Harald, 2016-09-12
Re: Critical Update for CVE-2016-6662
From: Reinis Rozitis, 2016-09-12