CVE-2010-3839

2010-11-0500:00:00

ubuntu.com

0.017 Low

EPSS

Percentile

87.7%

JSON

MySQL 5.1 before 5.1.51 and 5.5 before 5.5.6 allows remote authenticated
users to cause a denial of service (infinite loop) via multiple invocations
of a (1) prepared statement or (2) stored procedure that creates a query
with nested JOIN statements.

Bugs

Notes

Author	Note
jdstrand	mysql-cluster-7.0 not supported per server team
mdeslaur	mysql bug says “This is a regression introduced in 5.0.74 and 5.1.31 by the fix for bug #33811.”

OSVersionArchitecturePackageVersionFilename
ubuntu10.10noarchmysql-5.1< 5.1.49-1ubuntu8.1UNKNOWN
ubuntu9.10noarchmysql-dfsg-5.1< 5.1.37-1ubuntu5.5UNKNOWN
ubuntu10.04noarchmysql-dfsg-5.1< 5.1.41-3ubuntu12.7UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	10.10	noarch	mysql-5.1	< 5.1.49-1ubuntu8.1	UNKNOWN
ubuntu	9.10	noarch	mysql-dfsg-5.1	< 5.1.37-1ubuntu5.5	UNKNOWN
ubuntu	10.04	noarch	mysql-dfsg-5.1	< 5.1.41-3ubuntu12.7	UNKNOWN