English
¢¸¢· µÚ·Î
Ãë¾àÁ¡ID 25144
À§Çèµµ 30
Æ÷Æ® 3306
ÇÁ·ÎÅäÄÝ TCP
ºÐ·ù DB
»ó¼¼¼³¸í ÇØ´ç È£½ºÆ®¿¡´Â 5.1.72 ÀÌÀüÀÇ MySQLÀÇ ¾î¶² ¹öÀüÀÌ °¡µ¿ ÁßÀÌ´Ù. MySQL 5.1.72 ÀÌÀü 5.1.x ¹öÀüÀÇ ´ÙÀ½ ÄÄÆ÷³ÍÆ®¿¡ Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù.

- InnoDB
- Locking
- Optimizer

* ¾Ë¸²: ÀÌ Á¡°ËÇ׸ñÀº ÀÌ Ãë¾àÁ¡À» Á¡°ËÇϱâ À§ÇØ ÇØ´ç MySQLÀÇ ¹è³Ê Á¤º¸¸¸À» È®ÀÎÇÑ´Ù. µû¶ó¼­ °ÅÁþ ¾ç¼º¹ÝÀÀ(False Positive)À» º¸ÀÏ ¼ö ÀÖ´Ù.

* Âü°í »çÀÌÆ®:
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html#AppendixMSQL
http://dev.mysql.com/doc/relnotes/mysql/5.1/en/news-5-1-72.html

* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
MySQL 5.1.72 ÀÌÀüÀÇ 5.1.x ¹öÀüµé
¸ðµç ¿î¿µÃ¼Á¦ ¸ðµç ¹öÀü
ÇØ°áÃ¥ MySQL À¥ »çÀÌÆ®ÀÎ http://www.mysql.com/ ¿¡¼­ ±¸ÇÒ ¼ö ÀÖ´Â MySQLÀÇ °¡Àå ÃֽŠ¹öÀü(5.1.72 ȤÀº ÀÌÈÄ)À¸·Î ¾÷±×·¹À̵å ÇÏ¿©¾ß ÇÑ´Ù.
°ü·Ã URL CVE-2014-0386,CVE-2014-0393,CVE-2014-0402 (CVE)
°ü·Ã URL 64877,64904,64908 (SecurityFocus)
°ü·Ã URL (ISS)