FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mysql -- remote dos via malformed password packet

Affected packages
4.1	<=	mysql-server	<	4.1.24
5.0	<=	mysql-server	<	5.0.44
5.1	<=	mysql-server	<	5.1.20

Details

VuXML ID	240ac24c-dff3-11dd-a765-0030843d3802
Discovery	2007-07-15
Entry	2009-01-11

MySQL reports:

A malformed password packet in the connection protocol could cause the server to crash.

[source]

References

Bugtraq ID	25017
CVE Name	CVE-2007-3780
URL	http://bugs.mysql.com/bug.php?id=28984

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.