Bug#16169063: SECURITY CONCERN BECAUSE OF INSUFFICIENT LOGGING

PROBLEM: If multiple statements are sent by a single request then only the last statement was getting logged. An attacker can bypass the audit log just by sending two comsecutive statements in one request. SOLUTION: Each statements from a single request are logged.

Bug#16169063: SECURITY CONCERN BECAUSE OF INSUFFICIENT LOGGING
PROBLEM: If multiple statements are sent by a single request then only the last statement was getting logged. An attacker can bypass the audit log just by sending two comsecutive statements in one request. SOLUTION: Each statements from a single request are logged.
da6538b6 · Ashish Agarwal · 833c75da · da6538b6
Commit da6538b6 authored Mar 07, 2013 by Ashish Agarwal
Hide whitespace changes
Inline Side-by-side

Showing with 5 additions and 0 deletions

sql/sql_parse.cc sql/sql_parse.cc +5 -0

No files found.
--- a/sql/sql_parse.cc
+++ b/sql/sql_parse.cc
@@ -1048,6 +1048,11 @@ bool dispatch_command(enum enum_server_command command, THD *thd,
      thd->update_server_status();
      thd->protocol->end_statement();
      query_cache_end_of_result(thd);
+
+      mysql_audit_general(thd, MYSQL_AUDIT_GENERAL_STATUS,
+                          thd->stmt_da->is_error() ? thd->stmt_da->sql_errno()
+                          : 0, command_name[command].str);
+
      ulong length= (ulong)(packet_end - beginning_of_next_stmt);

      log_slow_statement(thd);