77 matches found
save_window_function_values in MariaDB before 10.6.3 allows an application crash because of incorrect handling of with_window_func=true for a subquery.
...
DEBIAN-CVE-2021-46658
savewindowfunctionvalues in MariaDB before 10.6.3 allows an application crash because of incorrect handling of withwindowfunc=true for a subquery...
DEBIAN-CVE-2021-46657
getsortbytable in MariaDB before 10.6.2 allows an application crash via certain subquery uses of ORDER BY...
AZL-8452 CVE-2021-46657 affecting package mariadb for versions less than 10.6.7-1
getsortbytable in MariaDB before 10.6.2 allows an application crash via certain subquery uses of ORDER BY...
UBUNTU-CVE-2021-46658
savewindowfunctionvalues in MariaDB before 10.6.3 allows an application crash because of incorrect handling of withwindowfunc=true for a subquery...
MariaDB 资源管理错误漏洞
MariaDB is a free and open source database management system from the MariaDB Mariadb Foundation and a forked version of MySQL with the Maria storage engine. A security vulnerability exists in MariaDB before 10.6.2 that stems from getsortbytable allowing to crash an application by using certain...
SQLite Resource Management Error Vulnerability
SQLite is a lightweight database that is an ACID compliant relational database management system. SQLite suffers from a resource management error vulnerability that stems from SQLite incorrectly handling certain subqueries. An attacker could use this vulnerability could exploit this issue to caus...
IBM DB2 9.7 < Fix Pack 10 Multiple Vulnerabilities
According to its version, the installation of IBM DB2 9.7 running on the remote host is affected by the following vulnerabilities : - An input-validation error exists related to handling the 'ALTER MODULE' statement that allows buffer overflows. CVE-2014-3094 - An error exists related to handling...
MariaDB Server 5.5.x < 5.5.36 Remote Multiple Denial of Service Vulnerabilities
Binary data 8132.prm...
openSUSE Security Update : libmysqlclient-devel (openSUSE-SU-2010:0198-2)
Updated mysql packages fix the following bugs : - upstream 47320 - checking server certificates CVE-2009-4028 - upstream 48291 - error handling in subqueries CVE-2009-4019 - upstream 47780 - preserving nullvalue flag in GeomFromWKB CVE-2009-4019 - upstream 39277 - symlink behaviour fixed...
CentOS 5 : mysql (CESA-2010:0109)
Updated mysql packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL serve...
RHEL 5 : mysql (RHSA-2010:0109)
Updated mysql packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL serve...
mysql: DoS (crash) when comparing GIS items from subquery and when handling subqueires in WHERE and assigning a SELECT result to a @variable
mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not 1 properly handle errors during execution of certain SELECT statements with subqueries, and does not 2 preserve certain nullvalue flags during execution of statements that use the GeomFromWKB function, which allows remote...
Code injection
mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not 1 properly handle errors during execution of certain SELECT statements with subqueries, and does not 2 preserve certain nullvalue flags during execution of statements that use the GeomFromWKB function, which allows remote...
CVE-2009-4019
mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not 1 properly handle errors during execution of certain SELECT statements with subqueries, and does not 2 preserve certain nullvalue flags during execution of statements that use the GeomFromWKB function, which allows remote...
MySQL < 5.1.41 Multiple Vulnerabilities
Binary data 801137.prm...
ATutor <= 1.5.3.1 (links) Remote Blind SQL Injection Exploit
Exploit for unknown platform in category web applications ============================================================ ATutor = 4.1 allowing SELECT subqueries for ORDER BY statements see http://dev.mysql.com/doc/refman/5.0/en/subqueries.html - with at least 2 links in atlinks table / if $argc5 ec...