CVE-2014-0001
CVE-2014-0001
Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server version string.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://bazaar.launchpad.net/~maria-captains/maria/5.5/revision/2502.565.64http://osvdb.org/102713http://rhn.redhat.com/errata/RHSA-2014-0164.htmlhttp://rhn.redhat.com/errata/RHSA-2014-0173.htmlhttp://rhn.redhat.com/errata/RHSA-2014-0186.htmlhttp://rhn.redhat.com/errata/RHSA-2014-0189.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=1054592http://secunia.com/advisories/52161http://security.gentoo.org/glsa/glsa-201409-04.xmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/90901https://mariadb.com/kb/en/mariadb-5535-changelog/http://www.mandriva.com/security/advisories?name=MDVSA-2014:029