[Bug] Revoke permissions on single information_schema table or better restrict access to data in information_schema #60451
Description
Search before asking
- I had searched in the issues and found no similar issues.
Version
4.0.2
What's Wrong?
A user that has access to one database can access data on information schema beyond their permissions.
Here I'm seeing admin queries despite querying from a subset user. This has potential data leak - a user querying infromation_schema can see other stuff going on that they don't have permission to.
Trying to revoke access to subset tables of information_schema throws an error too. Accessing information_schema.tables does properly filter data to only data the user has access to.
What You Expected?
All tables in information_schema should never leak any data outside the permissions of that users role.
How to Reproduce?
No response
Anything Else?
No response
Are you willing to submit PR?
- Yes I am willing to submit a PR!
Code of Conduct
- I agree to follow this project's Code of Conduct