- 5.2 Key changes in MySQL 5.0 releases
- 5.2.1 Changes in MySQL 5.0.70 (Not released yet)
- 5.2.2 Changes in MySQL 5.0.68 (13 August 2008)
- 5.2.3 Changes in MySQL 5.0.67 (04 August 2008)
- 5.2.4 Changes in MySQL 5.0.66 [MRU] (09 July 2008)
- 5.2.5 Changes in MySQL 5.0.64 [MRU] (10 June 2008)
- 5.2.6 Changes in MySQL 5.0.60 [MRU] (28 April 2008)
- 5.2.7 Changes in MySQL 5.0.56sp1 [QSP] (30 March 2008)
- 5.2.8 Changes in MySQL 5.0.54a [MRU] (11 January 2008)
- 5.2.9 Changes in MySQL 5.0.54 [MRU] (14 December 2007)
- 5.2.10 Changes in MySQL 5.0.52 [MRU] (30 November 2007)
- 5.2.11 Changes in MySQL 5.0.51 (15 November 2007)
- 5.2.12 Changes in MySQL 5.0.50sp1a [QSP] (11 January 2008)
- 5.2.13 Changes in MySQL 5.0.50 [MRU] (19 October 2007)
- 5.2.14 Changes in MySQL 5.0.45 (04 July 2007)
- 5.2.15 Changes in MySQL 5.0.44 [MRU] (21 June 2007)
- 5.2.16 Changes in MySQL 5.0.42 [MRU] (23 May 2007)
- 5.2.17 Changes in MySQL 5.0.41 (01 May 2007)
- 5.2.18 Changes in MySQL 5.0.38 [MRU] (20 March 2007)
- 5.2.19 Changes in MySQL 5.0.37 (27 February 2007)
- 5.2.20 Changes in MySQL 5.0.36 [MRU] (20 February 2007)
- 5.2.21 Changes in MySQL 5.0.33 (09 January 2007)
- 5.2.22 Changes in MySQL 5.0.32 [MRU] (20 December 2006)
- 5.2.23 Changes in MySQL 5.0.30sp1 [QSP] (19 January 2007)
- 5.2.24 Changes in MySQL 5.0.25 (15 September 2006)
- 5.2.25 Changes in MySQL 5.0.24 (27 July 2006)
- 5.2.26 Changes in MySQL 5.0.23 (Not released)
- 5.2.27 Changes in MySQL 5.0.22 (24 May 2006)
- 5.2.28 Changes in MySQL 5.0.21 (02 May 2006)
- 5.2.29 Changes in MySQL 5.0.19 (04 March 2006)
- 5.2.30 Changes in MySQL 5.0.15 (19 October 2005: Production)
Bugs fixed:
-
Security Fix: An SQL-injection security hole has been found in multi-byte encoding processing. The bug was in the server, incorrectly parsing the string escaped with the
mysql_real_escape_string()C API function.This vulnerability was discovered and reported by Josh Berkus
<josh@postgresql.org>and Tom Lane<tgl@sss.pgh.pa.us>as part of the inter-project security collaboration of the OSDB consortium. For more information about SQL injection, please see the following text.Discussion. An SQL injection security hole has been found in multi-byte encoding processing. An SQL injection security hole can include a situation whereby when a user supplied data to be inserted into a database, the user might inject SQL statements into the data that the server will execute. With regards to this vulnerability, when character set-unaware escaping is used (for example,
addslashes()in PHP), it is possible to bypass the escaping in some multi-byte character sets (for example, SJIS, BIG5 and GBK). As a result, a function such asaddslashes()is not able to prevent SQL-injection attacks. It is impossible to fix this on the server side. The best solution is for applications to use character set-aware escaping offered by a function suchmysql_real_escape_string().However, a bug was detected in how the MySQL server parses the output of
mysql_real_escape_string(). As a result, even when the character set-aware functionmysql_real_escape_string()was used, SQL injection was possible. This bug has been fixed.Workarounds. If you are unable to upgrade MySQL to a version that includes the fix for the bug in
mysql_real_escape_string()parsing, but run MySQL 5.0.1 or higher, you can use theNO_BACKSLASH_ESCAPESSQL mode as a workaround. (This mode was introduced in MySQL 5.0.1.)NO_BACKSLASH_ESCAPESenables an SQL standard compatibility mode, where backslash is not considered a special character. The result will be that queries will fail.To set this mode for the current connection, enter the following SQL statement:
SET sql_mode='NO_BACKSLASH_ESCAPES';
You can also set the mode globally for all clients:
SET GLOBAL sql_mode='NO_BACKSLASH_ESCAPES';
This SQL mode also can be enabled automatically when the server starts by using the command-line option
--sql-mode=NO_BACKSLASH_ESCAPESor by settingsql-mode=NO_BACKSLASH_ESCAPESin the server option file (for example,my.cnformy.ini, depending on your system). (Bug#8378, CVE-2006-2753)See also Bug#8303