ourdelta-developers team mailing list archive

Thread
Date

[Bug 352840] Re: INNODB_BUFFER_POOL_CONTENT privacy issue

To: ourdelta-developers@xxxxxxxxxxxxxxxxxxx
From: Allard Hoeve <allard@xxxxxxx>
Date: Tue, 25 Aug 2009 13:52:02 -0000
Reply-to: Bug 352840 <352840@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Thanks for the fix!

Will test this shortly.

-- 
INNODB_BUFFER_POOL_CONTENT privacy issue
https://bugs.launchpad.net/bugs/352840
You received this bug notification because you are a member of OurDelta-
developers, which is the registrant for OurDelta.

Status in OurDelta - Builds for MySQL: Confirmed
Status in Patches for MySQL by Percona: Fix Committed

Bug description:
INNODB_BUFFER_POOL_CONTENT does not prune rows returned in terms of what databases/tables the requesting user has access to. In many environments it is unacceptable for user to have access to data about the names of all database and table that exist on the instance.

I suggest that access to INNODB_BUFFER_POOL_CONTENT be restricted to user that have the SUPER privilege.

References

[Bug 352840] [NEW] INNODB_BUFFER_POOL_CONTENT privacy issue
From: Wultsch, 2009-04-01