Uploaded image for project: 'MariaDB Connector/C'
  1. MariaDB Connector/C
  2. CONC-206

Disallow LOAD DATA LOCAL INFILE

    XMLWordPrintable

Details

    • Task
    • Status: Open (View Workflow)
    • Critical
    • Resolution: Unresolved
    • None
    • None
    • None
    • None

    Description

      A customer reports that https://dev.mysql.com/doc/mysql-security-excerpt/5.1/en/load-data-local.html is critical. This issue is arouind a compromised MariaDB Server and through that getting access to client local files. As the issue is around a patched / compromised server, this issue has to be handled on the client side. The idea here is to have a configuration parameter that would disallow the MariaDB Connector to respond to requests for client local files.

      Attachments

        Issue Links

          is caused by

          Task - A task that needs to be done. CONC-515 Implement safe LOAD DATA LOCAL INFILE method

          • Major - Major loss of function.
          • Stalled

          Activity

            People

              georg Georg Richter
              karlsson Anders Karlsson
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:

                Git Integration

                  Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.