Hi,

an addition to 'audit-packages' :)

there are two 'new' security problems fixed in MySQL 5.0.21 (released 
today). From the changelog 
(http://dev.mysql.com/doc/refman/5.0/en/news-5-0-21.html):

Security fix: A malicious client, using specially crafted invalid 
COM_TABLE_DUMP packets was able to trigger an exploitable buffer 
overflow on the server. Thanks to Stefano Di Paola 
<stefano.dipaola@wisec.it> for finding and reporting this bug.

Security fix: A malicious client, using specially crafted invalid login 
or COM_TABLE_DUMP packets was able to read uninitialized memory, which 
potentially, though unlikely in MySQL, could have led to an information 
disclosure. Thanks to Stefano Di Paola <stefano.dipaola@wisec.it> for 
finding and reporting this bug.

r.