CVE-2024-36053

In the mintupload package through 4.2.0 for Linux Mint, service-name mishandling leads to command injection via shell metacharacters in checkconnection, dropdatareceivedcb, and Service.remove. A user can modify a service name in a /.linuxmint/mintUpload/services/service file...

OSV-2020-2246 Heap-use-after-free in check_connection

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28254 Crash type: Heap-use-after-free READ 6 Crash state: checkconnection fuzzcheckconnection httpfuzzer.c...

Design/Logic Flaw

The checkconnection function in sqlparse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to read portions of memory via a username without a trailing null byte, which causes a buffer over-read...

CVE-2006-1516

The checkconnection function in sqlparse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to read portions of memory via a username without a trailing null byte, which causes a buffer over-read...