PublicDate: 2008-09-11 01:13:00 UTC
Candidate: CVE-2008-3963
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3963
 https://ubuntu.com/security/notices/USN-671-1
Description:
 MySQL 5.0 before 5.0.66, 5.1 before 5.1.26, and 6.0 before 6.0.6 does not
 properly handle a b'' (b single-quote single-quote) token, aka an empty
 bit-string literal, which allows remote attackers to cause a denial of
 service (daemon crash) by using this token in a SQL statement.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to: mdeslaur
CVSS: 

Patches_mysql-dfsg-5.0:
 other: http://bugs.mysql.com/bug.php?id=35658
upstream_mysql-dfsg-5.0: released (5.0.66)
dapper_mysql-dfsg-5.0: released (5.0.22-0ubuntu6.06.11)
feisty_mysql-dfsg-5.0: needed (reached end-of-life)
gutsy_mysql-dfsg-5.0: released (5.0.45-1ubuntu3.4)
hardy_mysql-dfsg-5.0: released (5.0.51a-3ubuntu5.4)
intrepid_mysql-dfsg-5.0: not-affected (5.0.67-0ubuntu6)
devel_mysql-dfsg-5.0: not-affected (5.0.67-0ubuntu6)