Critical MySQL Bug

A critical vulnerability has been found in MySQL. The exploit allows a connection to submit an incorrect password for a known user. By flooding the connection MySQL can incorrectly allow access in as that user.

The full security advisory can be found at

This error has been fixed in recent versions of MySQL, and the problem is not present on Red Hat and Centos operating systems ( &

If in doubt about the status of your MySQL installation, you can help reduce attacks by making sure MySQL is not accepting connections over a network; or connections that can’t be done, make sure host based control is used for users. Use of a firewall to limit where connections can be made from would also be advised as a secondary measure.

This entry was posted in Managed Hosting. Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *


You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>