Red Hat Customer Portal

Skip to main content

CVE-2006-4031

Impact:
Low
Public Date:
2005-11-23
Bugzilla:
202246: CVE-2006-4031 MySQL improper permission revocation

The MITRE CVE dictionary describes this issue as:

MySQL 4.1 before 4.1.21 and 5.0 before 5.0.24 allows a local user to access a table through a previously created MERGE table, even after the user's privileges are revoked for the original table, which might violate intended security policy.

Find out more about CVE-2006-4031 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

This issue was corrected in all affected mysql packages versions as shipped in Red Hat Enterprise Linux or Red Hat Application Stack via:

https://rhn.redhat.com/errata/CVE-2006-4031.html

This issue did not affect mysql packages as shipped with Red Hat Enterprise Linux 2.1 or 3

Red Hat Security Errata

Platform Errata Release Date
Red Hat Application Stack v1 for Enterprise Linux AS (v.4) (mysql) RHSA-2007:0083 2007-02-19
Red Hat Enterprise Linux 5 (mysql) RHSA-2008:0364 2008-05-20
Red Hat Enterprise Linux 4 (mysql) RHSA-2008:0768 2008-07-24

Last Modified