* [Sysadmins] [mysql] Fwd: CVE-2006-3081: str_to_date(1,NULL) DoS
@ 2006-06-19 21:32 Michael Shigorin
0 siblings, 0 replies; only message in thread
From: Michael Shigorin @ 2006-06-19 21:32 UTC (permalink / raw)
To: sysadmins
----- Forwarded message from Christian Hammers <ch/debian.org> -----
Date: Mon, 19 Jun 2006 22:56:43 +0200
From: Christian Hammers <ch/debian.org>
To: packagers/lists.mysql.com, security/mysql.com
Subject: CVE-2006-3081: str_to_date(1,NULL) DoS
Hello
FYI
MySQL, could you please tell the docs team to include the CVE id in the
changelog?
bye,
-christian-
Name: CVE-2006-3081
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3081
Reference: BUGTRAQ:20060614 MySQL DoS
Reference: URL:http://www.securityfocus.com/archive/1/437145
Reference: BUGTRAQ:20060615 Re: MySQL DoS
Reference: URL:http://www.securityfocus.com/archive/1/437277
Reference: BUGTRAQ:20060615 Re: MySQL DoS
Reference:
URL:http://www.securityfocus.com/archive/1/archive/1/437571/100/0/threaded
Reference: FULLDISC:20060615 MySQL DoS Reference:
URL:http://seclists.org/lists/fulldisclosure/2006/Jun/0434.html Reference:
CONFIRM:http://bugs.mysql.com/bug.php?id=15828 Reference:
CONFIRM:http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=373913 Reference:
BID:18439 Reference: URL:http://www.securityfocus.com/bid/18439
mysqld in MySQL 4.1.x before 4.1.18, 5.0.x before 5.0.19, and 5.1.x
before 5.1.6 allows remote authorized users to cause a denial of
service (crash) via a NULL second argument to the str_to_date
function.
----- End forwarded message -----
--
---- WBR, Michael Shigorin <mike@altlinux.ru>
------ Linux.Kiev http://www.linux.kiev.ua/
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2006-06-19 21:32 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2006-06-19 21:32 [Sysadmins] [mysql] Fwd: CVE-2006-3081: str_to_date(1,NULL) DoS Michael Shigorin
ALT Linux sysadmins discussion
This inbox may be cloned and mirrored by anyone:
git clone --mirror http://lore.altlinux.org/sysadmins/0 sysadmins/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 sysadmins sysadmins/ http://lore.altlinux.org/sysadmins \
sysadmins@lists.altlinux.org sysadmins@lists.altlinux.ru sysadmins@lists.altlinux.com
public-inbox-index sysadmins
Example config snippet for mirrors.
Newsgroup available over NNTP:
nntp://lore.altlinux.org/org.altlinux.lists.sysadmins
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git