CVE-2008-0226

Priority
Description
Multiple buffer overflows in yaSSL 1.7.5 and earlier, as used in MySQL and
possibly other products, allow remote attackers to execute arbitrary code
via (1) the ProcessOldClientHello function in handshake.cpp or (2)
"input_buffer& operator>>" in yassl_imp.cpp.
Notes
 jdstrand> dapper not affected (yassl not compiled)
Assigned-to
jdstrand
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Patches:
Vendor:http://www.debian.org/security/2008/dsa-1478
More Information

Updated: 2019-03-19 11:45:02 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)