PublicDate: 2006-07-21 14:03:00 UTC
Candidate: CVE-2006-3469
References:
 https://ubuntu.com/security/notices/USN-321-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3469
Description:
 Format string vulnerability in time.cc in MySQL Server 4.1 before 4.1.21
 and 5.0 before 1 April 2006 allows remote authenticated users to cause a
 denial of service (crash) via a format string instead of a date as the
 first parameter to the date_format function, which is later used in a
 formatted print call to display the error message.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_mysql-dfsg-5.0: released (5.0.22-0ubuntu6.06.3)
edgy_mysql-dfsg-5.0: released (5.0.24a-9ubuntu0.1)
feisty_mysql-dfsg-5.0: released (5.0.38-0ubuntu1)
dapper_mysql-dfsg: not-affected
edgy_mysql-dfsg: not-affected
feisty_mysql-dfsg: DNE
devel_mysql-dfsg: DNE
upstream_mysql-dfsg: needs-triage
upstream_mysql-dfsg-5.0: needs-triage