CVE-2010-3679

Priority
Medium
Description
Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a
denial of service (mysqld daemon crash) via certain arguments to the BINLOG
command, which triggers an access of uninitialized memory, as demonstrated
by valgrind.
References
Bugs
Notes
 jdstrand> mysql-cluster-7.0 not supported per server team
 mdeslaur> code doesn't seem present in 5.0.x
Package
Upstream:needs-triage
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Package
Upstream:released (5.1.49)
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Patches:
Upstream:http://bazaar.launchpad.net/~mysql/mysql-server/mysql-5.1/revision/3436
Package
Upstream:not-affected
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Package
Upstream:released (5.1.49)
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (5.1.49-1ubuntu8)
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:39:00 UTC (commit 9756)