EUVD-2012-5500

Malware in sbrugna...

mariadb: server crash in component arg_comparator::compare_real_fixed

A flaw was found in MariaDB. The component, Argcomparator::comparerealfixed, allows attackers to cause a denial of service DoS via specially crafted SQL statements, affecting availability...

mariadb: server crash in create_tmp_table::finalize

A flaw was found in MariaDB. The component, Createtmptable::finalize, allows attackers to cause a denial of service DoS via specially crafted SQL statements, affecting availability...

mariadb: incorrect key in "dup value" error after long unique

A flaw was found in the MariaDB Server. It contains a use-after-free in the component, mymbwclatin1 at /strings/ctype-latin1.c, affecting availability...

mariadb: crash via component Item_subselect::init_expr_cache_tracker

A flaw was found in MariaDB. An issue in the component, Itemsubselect::initexprcachetracker of the MariaDB Server, allows attackers to cause a denial of service DoS via specially crafted SQL statements, impacting availability...

mariadb: Insufficient SST method name check leading to code injection in mysql-wsrep

A flaw was found in the mysql-wsrep component of mariadb. Lack of input sanitization in wsrepsstmethod allows for command injection that can be exploited by a remote attacker to execute arbitrary commands on galera cluster nodes. This threatens the system's confidentiality, integrity, and...

UBUNTU-CVE-2016-0608

Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via vectors related to UDF...