Showing 1 - 6 of 6

CVE-2009-4019

Status Candidate

Overview

mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not (1) properly handle errors during execution of certain SELECT statements with subqueries, and does not (2) preserve certain null_value flags during execution of statements that use the GeomFromWKB function, which allows remote authenticated users to cause a denial of service (daemon crash) via a crafted statement.

Related Files

Ubuntu Security Notice USN-1397-1: Posted Mar 12, 2012; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 1397-1 - Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has been updated to 5.1.61 in Ubuntu 10.04 LTS, Ubuntu 10.10, Ubuntu 11.04 and Ubuntu 11.10. Ubuntu 8.04 LTS has been updated to MySQL 5.0.95. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes. Various other issues were also addressed.; tags | advisory; systems | linux, ubuntu; advisories | CVE-2007-5925, CVE-2008-3963, CVE-2008-4098, CVE-2008-4456, CVE-2008-7247, CVE-2009-2446, CVE-2009-4019, CVE-2009-4030, CVE-2009-4484, CVE-2010-1621, CVE-2010-1626, CVE-2010-1848, CVE-2010-1849, CVE-2010-1850, CVE-2010-2008, CVE-2010-3677, CVE-2010-3678, CVE-2010-3679, CVE-2010-3680, CVE-2010-3681, CVE-2010-3682, CVE-2010-3683, CVE-2010-3833, CVE-2010-3834, CVE-2010-3835, CVE-2010-3836, CVE-2010-3837, CVE-2010-3838; SHA-256 | dda21a42a15ae22869f978d3746bb4b1626d8469bab9ce1b18636fb138cf0739; Download | Favorite | View

Gentoo Linux Security Advisory 201201-02: Posted Jan 6, 2012; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201201-2 - Multiple vulnerabilities were found in MySQL, some of which may allow execution of arbitrary code. Versions less than 5.1.56 are affected.; tags | advisory, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2008-3963, CVE-2008-4097, CVE-2008-4098, CVE-2008-4456, CVE-2008-7247, CVE-2009-2446, CVE-2009-4019, CVE-2009-4028, CVE-2009-4484, CVE-2010-1621, CVE-2010-1626, CVE-2010-1848, CVE-2010-1849, CVE-2010-1850, CVE-2010-2008, CVE-2010-3676, CVE-2010-3677, CVE-2010-3678, CVE-2010-3679, CVE-2010-3680, CVE-2010-3681, CVE-2010-3682, CVE-2010-3683, CVE-2010-3833, CVE-2010-3834, CVE-2010-3835, CVE-2010-3836, CVE-2010-3837; SHA-256 | 117eb25ee6c51f621745264b1ef7083b0a2c6153fdaa4646571449649e0c610d; Download | Favorite | View

Debian Linux Security Advisory 1997-1: Posted Feb 15, 2010; Authored by Debian | Site debian.org; Debian Linux Security Advisory 1997-1 - Several vulnerabilities have been discovered in the MySQL database server.; tags | advisory, vulnerability; systems | linux, debian; advisories | CVE-2009-4019, CVE-2009-4030, CVE-2009-4484; SHA-256 | 54e566dbfb87fa36f8023e4cbcf62c003f4eed13e2d90e3c5996041331dea4fe; Download | Favorite | View

Ubuntu Security Notice 897-1: Posted Feb 10, 2010; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 897-1 - It was discovered that MySQL could be made to overwrite existing table files in the data directory. It was discovered that MySQL contained a cross-site scripting vulnerability in the command-line client when the --html option is enabled. It was discovered that MySQL could be made to overwrite existing table files in the data directory. It was discovered that MySQL contained multiple format string flaws when logging database creation and deletion. It was discovered that MySQL incorrectly handled errors when performing certain SELECT statements, and did not preserve correct flags when performing statements that use the GeomFromWKB function. It was discovered that MySQL incorrectly checked symlinks when using the DATA DIRECTORY and INDEX DIRECTORY options. It was discovered that MySQL contained a buffer overflow when parsing ssl certificates.; tags | advisory, overflow, xss; systems | linux, ubuntu; advisories | CVE-2008-4098, CVE-2008-4456, CVE-2008-7247, CVE-2009-2446, CVE-2009-4019, CVE-2009-4030, CVE-2009-4484; SHA-256 | f0edf6f7535b1520aeb975de468f02533ed513b5b5870eefc4dccd6cc1160507; Download | Favorite | View

Mandriva Linux Security Advisory 2010-012: Posted Jan 18, 2010; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory 2010-012 - Multiple vulnerabilities has been found and corrected in mysql.; tags | advisory, vulnerability; systems | linux, mandriva; advisories | CVE-2009-4019, CVE-2009-4028, CVE-2009-4030; SHA-256 | 67c7b41fe24310151960b33a57adc6773e6fe878b448a9f16626e0e1eb974c5f; Download | Favorite | View

Mandriva Linux Security Advisory 2010-011: Posted Jan 18, 2010; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory 2010-011 - Multiple vulnerabilities has been found and corrected in mysql.; tags | advisory, vulnerability; systems | linux, mandriva; advisories | CVE-2009-4019, CVE-2009-4028, CVE-2009-4030; SHA-256 | 7c58dfacc77b0b7dc3764e67944dd0ddadc33f2d49d5511c914e60f41b77b2a6; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 210 files
Ubuntu 87 files
Gentoo 31 files
Debian 21 files
tmrswrr 10 files
Sina Kheirkhah 7 files
Rodolfo Tavares 4 files
bRpsd 4 files
Google Security Research 3 files
Jann Horn 3 files

File Archives

Systems

AIX (429)
Apple (2,090)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,078)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,531)
HPUX (880)
iOS (376)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,350)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,266)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,658)
UNIX (9,425)
UnixWare (187)
Windows (6,666)
Other

CVE-2009-4019

Overview

Related Files

File Archive:

July 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems