Details
-
Type:
Task
-
Status: Closed (View Workflow)
-
Priority:
Critical
-
Resolution: Fixed
-
Component/s: Information Schema, Plugins
-
Labels:None
Description
The documentation for the information_schema.DISKS table says the following:
This plugin does not check user privileges. When it is enabled, any user can query the INFORMATION_SCHEMA.DISKS table and see all the information it provides.
https://mariadb.com/kb/en/library/information-schema-disks-table/
It seems like this table should be protected by some privilege. Maybe FILE and/or SUPER privileges would be appropriate?
Attachments
Issue Links
- relates to
-
MDEV-14533 Provide information_schema tables using which hardware information can be obtained.
-
- Closed
-