CVE-2014-0001

Priority
Low
Description
Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before
5.5.35 allows remote database servers to cause a denial of service (crash)
and possibly execute arbitrary code via a long server version string.
References
Bugs
Notes
mdeslaur> Looks like this was fixed in 5.5.37
Assigned-to
mdeslaur
Package
Upstream:released (5.5.37)
Ubuntu 10.04 LTS (Lucid Lynx):DNE
Ubuntu 12.04 LTS (Precise Pangolin):released (5.5.37-0ubuntu0.12.04.1)
Ubuntu 14.04 LTS (Trusty Tahr):released (5.5.37-0ubuntu0.14.04.1)
Ubuntu 14.10 (Utopic Unicorn):released (5.5.37-0ubuntu0.14.04.1)
Patches:
Vendor:http://anonscm.debian.org/gitweb/?p=pkg-mysql/mysql-5.5.git;a=commit;h=0ad3ca2b57feaf65b199c8bfb9a8dcd51a0bdb9f
Package
Upstream:needs-triage
Ubuntu 10.04 LTS (Lucid Lynx):deferred (2014-07-17)
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Ubuntu 14.10 (Utopic Unicorn):DNE
More Information

Valid XHTML 1.0 Strict

Updated: 2014-07-17 19:14:14 UTC (commit 8247)