Bug#27919254 MYSQL USER ESCALATES ITS PRIVILEGE BY PLACING ARBITRARY PIDS INTO ITS PID FILES

Shutdown server as mysql user to avoid accidentally sending signal to wrong process.

Bug#27919254 MYSQL USER ESCALATES ITS PRIVILEGE BY PLACING ARBITRARY PIDS INTO ITS PID FILES
Shutdown server as mysql user to avoid accidentally sending signal to wrong process.
e1fdeb24 · Terje Rosten · cad692f9 · e1fdeb24 · e1fdeb24
Commit e1fdeb24 authored Jun 20, 2018 by Terje Rosten
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 3 deletions

packaging/rpm-oel/mysql.init packaging/rpm-oel/mysql.init +1 -1

packaging/rpm-sles/mysql.init packaging/rpm-sles/mysql.init +2 -2

No files found.
--- a/packaging/rpm-oel/mysql.init
+++ b/packaging/rpm-oel/mysql.init
@@ -159,7 +159,7 @@ stop(){
 	fi
 	MYSQLPID=`cat "$mypidfile"`
 	if [ -n "$MYSQLPID" ]; then
-	    /bin/kill "$MYSQLPID" >/dev/null 2>&1
+	    /bin/su - mysql -s /bin/bash -c "/bin/kill $MYSQLPID" >/dev/null 2>&1
 	    ret=$?
 	    if [ $ret -eq 0 ]; then
 		TIMEOUT="$STOPTIMEOUT"

--- a/packaging/rpm-sles/mysql.init
+++ b/packaging/rpm-sles/mysql.init
@@ -163,7 +163,7 @@ stop () {

    # We use a signal to avoid having to know the root password
    # Send single kill command and then wait
-    if kill $pid >/dev/null 2>&1; then
+    if su - mysql -s /bin/bash -c "kill $pid" >/dev/null 2>&1; then
 	timer=$STOPTIMEOUT
 	while [ $timer -gt 0 ]; do
            kill -0 $pid >/dev/null 2>&1 || break
@@ -196,7 +196,7 @@ reload () {
    ret=0
    if chk_running && mysqladmin --no-defaults --socket="$socket" ping >/dev/null 2>&1 ; then
 	pid=$(cat "$pidfile")
-	kill -HUP $pid >/dev/null 2>&1
+	su - mysql -s /bin/bash -c "kill -HUP $pid" >/dev/null 2>&1
 	echo -n "Reloading service MySQL:"
 	rc_reset
    else