Mandriva Linux Security Advisory : mysql (MDVSA-2010:223)

Multiple vulnerabilities were discovered and corrected in mysql : - During evaluation of arguments to extreme-value functions such as LEAST and GREATEST, type errors did not propagate properly, causing the server to crash CVE-2010-3833. - The server could crash after materializing a derived table...

CVE-2010-3840

The Gislinestring::initfromwkb function in sql/spatial.cc in MySQL 5.1 before 5.1.51 allows remote authenticated users to cause a denial of service server crash by calling the PolyFromWKB function with Well-Known Binary WKB data containing a crafted number of 1 line strings or 2 line points...