CVE-2010-3837 (retired)

Priority
Description
MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 allows
remote authenticated users to cause a denial of service (server crash) via
a prepared statement that uses GROUP_CONCAT with the WITH ROLLUP modifier,
probably triggering a use-after-free error when a copied object is modified
in a way that also affects the original object.
Notes
 jdstrand> mysql-cluster-7.0 not supported per server team
Package
Upstream:released (5.1.51)
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Updated: 2019-09-19 15:33:51 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)