Commit f0171a92 authored by unknown's avatar unknown

A very small security fix

parent b1516966
...@@ -50222,6 +50222,9 @@ each individual 4.0.x release. ...@@ -50222,6 +50222,9 @@ each individual 4.0.x release.
@itemize @bullet @itemize @bullet
@item @item
Fixed small security bug when old user table is used with 4.0.3 or higher
and user had no global access
@item
Fixed security bug in database hash Fixed security bug in database hash
@item @item
Fixed create table from any ITEM_FUNC and reverted a patch for month() Fixed create table from any ITEM_FUNC and reverted a patch for month()
...@@ -297,6 +297,7 @@ int acl_init(bool dont_read_acl_tables) ...@@ -297,6 +297,7 @@ int acl_init(bool dont_read_acl_tables)
user.access|=REFERENCES_ACL | INDEX_ACL | ALTER_ACL; user.access|=REFERENCES_ACL | INDEX_ACL | ALTER_ACL;
} }
/* Convert old privileges */ /* Convert old privileges */
if (user.access)
user.access|= LOCK_TABLES_ACL | CREATE_TMP_ACL | SHOW_DB_ACL; user.access|= LOCK_TABLES_ACL | CREATE_TMP_ACL | SHOW_DB_ACL;
if (user.access & FILE_ACL) if (user.access & FILE_ACL)
user.access|= REPL_CLIENT_ACL | REPL_SLAVE_ACL; user.access|= REPL_CLIENT_ACL | REPL_SLAVE_ACL;
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment