4 matches found
CVE-2022-31026
Trilogy is a client library for MySQL. When authenticating, a malicious server could return a specially crafted authentication packet, causing the client to read and return up to 12 bytes of data from an uninitialized variable in stack memory. Users of the trilogy gem should upgrade to version...
CVE-2022-31026 Use of Uninitialized Variable in trilogy
Trilogy is a client library for MySQL. When authenticating, a malicious server could return a specially crafted authentication packet, causing the client to read and return up to 12 bytes of data from an uninitialized variable in stack memory. Users of the trilogy gem should upgrade to version...
CVE-2022-31026 Use of Uninitialized Variable in trilogy
Trilogy is a client library for MySQL. When authenticating, a malicious server could return a specially crafted authentication packet, causing the client to read and return up to 12 bytes of data from an uninitialized variable in stack memory. Users of the trilogy gem should upgrade to version...
CVE-2022-31026
CVE-2022-31026 affects the Trilogy client library for MySQL. During authentication, a malicious server can send a crafted authentication packet, causing the client to read up to 12 bytes from an uninitialized variable in stack memory. Public advisories consistently recommend upgrading the trilogy...