Описание
The DBD::mysql module before 4.039 for Perl, when using server-side prepared statement support, allows attackers to cause a denial of service (out-of-bounds read) via vectors involving an unaligned number of placeholders in WHERE condition and output fields in SELECT expression.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | perl-DBD-MySQL | Will not fix | ||
| Red Hat Enterprise Linux 6 | perl-DBD-MySQL | Will not fix | ||
| Red Hat Enterprise Linux 7 | perl-DBD-MySQL | Will not fix | ||
| Red Hat Software Collections | rh-perl520-perl-DBD-MySQL | Will not fix | ||
| Red Hat Software Collections | rh-perl524-perl-DBD-MySQL | Will not fix |
Показывать по
Дополнительная информация
Статус:
5.9 Medium
CVSS3
4 Medium
CVSS2
Связанные уязвимости
The DBD::mysql module before 4.039 for Perl, when using server-side prepared statement support, allows attackers to cause a denial of service (out-of-bounds read) via vectors involving an unaligned number of placeholders in WHERE condition and output fields in SELECT expression.
The DBD::mysql module before 4.039 for Perl, when using server-side prepared statement support, allows attackers to cause a denial of service (out-of-bounds read) via vectors involving an unaligned number of placeholders in WHERE condition and output fields in SELECT expression.
The DBD::mysql module before 4.039 for Perl, when using server-side pr ...
The DBD::mysql module before 4.039 for Perl, when using server-side prepared statement support, allows attackers to cause a denial of service (out-of-bounds read) via vectors involving an unaligned number of placeholders in WHERE condition and output fields in SELECT expression.
5.9 Medium
CVSS3
4 Medium
CVSS2