suse · CVE-2007-5969

Quick triage

Priority: high Published: 2021-05-30 12:40:45 UTC Updated: 2026-04-18 20:30:49 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2007-5969 severity important: SUSE including 87 source package names (liblz4-1-1.8.0-3.5.2, libmariadb-devel-3.1.22-2.35.1, …), 178 product×package rows across 23 product lines (SUSE CaaS Platform 4.0, SUSE Linux Enterprise High Performance Computing 12 SP5, … (23 product lines)): Fixed 149, Known Not Affected 29.

Description:

MySQL Community Server 5.0.x before 5.0.51, Enterprise Server 5.0.x before 5.0.52, Server 5.1.x before 5.1.23, and Server 6.0.x before 6.0.4, when a table relies on symlinks created through explicit DATA DIRECTORY and INDEX DIRECTORY options, allows remote authenticated users to overwrite system table information and gain privileges via a RENAME TABLE statement that changes the symlink to point to an existing file.

cvelogic Threat Intelligence