oss-sec mailing list archives
Re: CVE request for mysql bug #22413
From: "Steven M. Christey" <coley () linus mitre org>
Date: Tue, 26 Feb 2008 12:33:53 -0500 (EST)
I've joined the oss-security list, all. Hopefully this makes it through. - Steve ====================================================== Name: CVE-2006-7232 Status: Candidate URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-7232 Reference: CONFIRM:http://bugs.mysql.com/bug.php?id=22413 Reference: CONFIRM:http://dev.mysql.com/doc/refman/5.0/en/releasenotes-es-5-0-32.html Reference: CONFIRM:http://dev.mysql.com/doc/refman/5.1/en/news-5-1-14.html sql_select.cc in MySQL 5.0.x before 5.0.32 and 5.1.x before 5.1.14 allows remote authenticated users to cause a denial of service (crash) via an EXPLAIN SELECT FROM on the INFORMATION_SCHEMA table, as originally demonstrated using ORDER BY.
Current thread:
- CVE request for mysql bug #22413 Jamie Strandboge (Feb 21)
- Re: CVE request for mysql bug #22413 Jonathan Smith (Feb 21)
- Re: CVE Help (CVE request for mysql bug #22413) Josh Bressers (Feb 21)
- Re: CVE Help Solar Designer (Feb 22)
- Re: CVE Help (CVE request for mysql bug #22413) Steven M. Christey (Feb 25)
- Re: CVE request for mysql bug #22413 Steven M. Christey (Feb 26)
- Re: CVE Help (CVE request for mysql bug #22413) Josh Bressers (Feb 21)
- Re: CVE request for mysql bug #22413 Jonathan Smith (Feb 21)