EUVD-2010-3819

Malware in sbrugna...

Denial Of Service (DoS)

mysql is vulnerable to denial of service. It was found that the MySQL PolyFromWKB function did not sanity check Well-Known Binary WKB data. A remote, authenticated attacker could use specially-crafted WKB data to crash mysqld. This issue only caused a temporary denial of service, as mysqld was...

Code injection

The Gislinestring::initfromwkb function in sql/spatial.cc in MySQL 5.1 before 5.1.51 allows remote authenticated users to cause a denial of service server crash by calling the PolyFromWKB function with Well-Known Binary WKB data containing a crafted number of 1 line strings or 2 line points...

CVE-2010-3840

CVE-2010-3840 affects MySQL 5.1, where Gis_line_string::init_from_wkb in sql/spatial.cc can crash the server. If remote, authenticated users supply Well-Known Binary data containing a crafted number of line strings or line points, it can cause a denial of service (server crash). The issue is docu...

CVE-2010-3840

The Gislinestring::initfromwkb function in sql/spatial.cc in MySQL 5.1 before 5.1.51 allows remote authenticated users to cause a denial of service server crash by calling the PolyFromWKB function with Well-Known Binary WKB data containing a crafted number of 1 line strings or 2 line points...

[SECURITY] [DSA-2143-1] New mysql-dfsg-5.0 packages fix several vulnerabilities

------------------------------------------------------------------------- Debian Security Advisory DSA-2143-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano January 14, 2011 http://www.debian.org/security/faq -...