All errata/sisyphus/ALT-PU-2016-2306-1
ALT-PU-2016-2306-1

Package update perl-DBD-mysql in branch sisyphus

Version4.039-alt1
Task#172361
Published2016-11-17
Max severityMEDIUM
Severity:

Closed issues (1)

CVE-2016-1249
MEDIUM5.9

The DBD::mysql module before 4.039 for Perl, when using server-side prepared statement support, allows attackers to cause a denial of service (out-of-bounds read) via vectors involving an unaligned number of placeholders in WHERE condition and output fields in SELECT expression.

Published: 2017-02-17Modified: 2025-04-20
CVSS 2.0MEDIUM 4.3
CVSS:2.0/AV:N/AC:M/Au:N/C:N/I:N/A:P
CVSS 3.xMEDIUM 5.9
CVSS:3.x/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
References