CVE-2010-3837
Publication date 5 November 2010
Last updated 24 July 2024
Ubuntu priority
MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (server crash) via a prepared statement that uses GROUP_CONCAT with the WITH ROLLUP modifier, probably triggering a use-after-free error when a copied object is modified in a way that also affects the original object.
Status
Package | Ubuntu Release | Status |
---|---|---|
mysql-5.1 | ||
mysql-cluster-7.0 | ||
mysql-dfsg-5.0 | ||
mysql-dfsg-5.1 | ||
Notes
Patch details
Package | Patch details |
---|---|
mysql-dfsg-5.1 |
References
Related Ubuntu Security Notices (USN)
- USN-1017-1
- MySQL vulnerabilities
- 11 November 2010
- USN-1397-1
- MySQL vulnerabilities
- 12 March 2012