[MDEV-18440] Information_schema.check_constraints possible data leak - Jira

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Major
Resolution: Fixed
Affects Version/s: 10.2(EOL), 10.3(EOL)
Fix Version/s: 10.2.31, 10.3.22, 10.4.12
Component/s: Information Schema
Labels:
None

Description

information_schema.check_constraints can leak unwanted information via check constraints definitions. For example, a user can infer column names from a table:

create user foo;

create database db;

use db;

create table t1 (a int, b int, CONSTRAINT CHECK (b > 0));

insert into t1 values (1, 2), (2, 3);

grant select (a) on t1 to foo;

show grants for foo;

select * from information_schema.check_constraints;

CONNECT(con1,localhost, foo,, db);

select a from t1;

select * from information_schema.check_constraints;

--CONNECTION DEFAULT;

drop database db;

This will print, when logged in as user foo:

select * from information_schema.check_constraints;

CONSTRAINT_CATALOG	CONSTRAINT_SCHEMA	CONSTRAINT_NAME	TABLE_NAME	CHECK_CLAUSE

def	db	t1	CONSTRAINT_1	`b` > 0

So now, user foo knows table t1 has a `b` column.

Attachments

Activity

People

Assignee:: Anel Husakovic

Reporter:: Vicențiu Ciorbaru

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 2019-01-31 22:30

Updated:: 2019-12-13 14:59

Resolved:: 2019-12-13 14:59

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.