Documentation Home
MySQL 5.0 Release Notes
Related Documentation Download these Release Notes
PDF (US Ltr) - 2.1Mb
PDF (A4) - 2.1Mb


MySQL 5.0 Release Notes  /  Changes in MySQL Enterprise 5.0.50sp1a [QSP] (2008-01-11)

Changes in MySQL Enterprise 5.0.50sp1a [QSP] (2008-01-11)

This is a Service Pack release of the MySQL Enterprise Server 5.0.

This is a bugfix release that replaces MySQL 5.0.50sp1.

Bugs Fixed

  • Security Fix: Three vulnerabilities in yaSSL versions 1.7.5 and earlier were discovered that could lead to a server crash or execution of unauthorized code. The exploit requires a server with yaSSL enabled and TCP/IP connections enabled, but does not require valid MySQL account credentials. The exploit does not apply to OpenSSL.

    Warning

    The proof-of-concept exploit is freely available on the Internet. Everyone with a vulnerable MySQL configuration is advised to upgrade immediately.

    (Bug #33814, CVE-2008-0226, CVE-2008-0227)