ALT-PU-2014-2463-1
Package perl-DBD-mysql updated to version 4.029-alt1 for branch sisyphus in task 136655.
Closed vulnerabilities
Published: 2016-08-20
BDU:2016-02084
Уязвимость драйвера DBD::mysq, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код
Severity: CRITICAL (10.0)
References:
Published: 2016-08-20
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2014-9906
Use-after-free vulnerability in DBD::mysql before 4.029 allows attackers to cause a denial of service (program crash) or possibly execute arbitrary code via vectors related to a lost server connection.
Severity: CRITICAL (9.8)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
- http://cpansearch.perl.org/src/CAPTTOFU/DBD-mysql-4.029/ChangeLog
- http://cpansearch.perl.org/src/CAPTTOFU/DBD-mysql-4.029/ChangeLog
- DSA-3635
- DSA-3635
- [oss-security] 20160727 CVE Request: DBD-mysql: use-after-free in mysql_dr_error
- [oss-security] 20160727 CVE Request: DBD-mysql: use-after-free in mysql_dr_error
- [oss-security] 20160727 Re: CVE Request: DBD-mysql: use-after-free in mysql_dr_error
- [oss-security] 20160727 Re: CVE Request: DBD-mysql: use-after-free in mysql_dr_error
- 92149
- 92149
- https://github.com/perl5-dbi/DBD-mysql/commit/a56ae87a4c1c1fead7d09c3653905841ccccf1cc
- https://github.com/perl5-dbi/DBD-mysql/commit/a56ae87a4c1c1fead7d09c3653905841ccccf1cc
- https://rt.cpan.org/Public/Bug/Display.html?id=97625
- https://rt.cpan.org/Public/Bug/Display.html?id=97625