[MDEV-29834] GRANT OPTION allows to see databases - Jira

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Major
Resolution: Not a Bug
Affects Version/s: 10.2, 10.3, 10.4, 10.5, 10.6, 10.7, 10.8, 10.9, 10.10
Fix Version/s: N/A
Component/s: Authentication and Privilege System
Labels:
None

Description

to see a database, for example, in SHOW DATABASES a user must have at least some privilege on that database. GRANT OPTION is enough:

GRANT USAGE ON *.* TO user@host WITH GRANT OPTION;

allows to see all databases.

As GRANT OPTION is not a real privilege, perhaps it shouldn't allow to see databases?

MySQL Bug#25203933, fixed in 5.7.40 and in 8.0.17

Attachments

Issue Links

links to

Activity

People

Assignee:: Sergei Golubchik

Reporter:: Sergei Golubchik

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 2022-10-20 12:56

Updated:: 2022-10-20 13:34

Resolved:: 2022-10-20 13:34

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.