lp:~dage/mysql-mmm/cve-fix
- Get this branch:
- bzr branch lp:~dage/mysql-mmm/cve-fix
Branch merges
- David Beveridge: Approve
-
Diff: 85 lines (+21/-1)4 files modifiedlib/Agent/Helpers.pm (+4/-0)
lib/Agent/Helpers/Network.pm (+15/-0)
lib/Common/Role.pm (+1/-1)
lib/Common/Socket.pm (+1/-0)
Related source package recipes
Related bugs
Related blueprints
Branch information
Recent revisions
- 149. By David Beveridge
-
Fix for TALOS-2017-0501; CVE-2017-14474 - CVE-2017-14481
Multi-Master Replication Manager for MySQL mmm_agentd Remote Command Injection Vulnerabilities
Multiple exploitable remote command injection vulnerabilities exist
in the MySQL Master-Master Replication Manager (MMM) mmm_agentd
daemon 2.2.1. mmm_agentd commonly runs with root privileges and does not
require authentication by default. A specially crafted MMM protocol
message can cause a shell command injection resulting in arbitrary
command execution with the privileges of the mmm_agentd process. An
attacker that can initiate a TCP session with mmm_agentd can trigger
these vulnerabilities. - 146. By Pascal Hofmann
-
Removed checks for incorrect state REPLICATION_BACKLOG (it's called REPLICATION_
DELAY.. .). - 141. By Pascal Hofmann
-
* Added manual mode (bug #531011), wait mode, config values 'mode' and 'wait_for_
other_master'
* Don't die at startup when no network connection is available - wait for it to appear instead (bug #416572)
* Changed startup behaviour. mmm_mond will only go into passive mode if it detects the active_master_role on more than one host.
* Added config value 'careful_startup' (bug #422549). If set to 0 mmm_mond won't ever switch into passive mode at startup.
* Added check for invalid agent commands (prevents crash when mmmd_mon version 1.x talks to an 2.x agent).
Branch metadata
- Branch format:
- Branch format 6
- Repository format:
- Bazaar pack repository format 1 with rich root (needs bzr 1.0)
