Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2010-3682

Опубликовано: 11 янв. 2011
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4

Описание

Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using EXPLAIN with crafted "SELECT ... UNION ... ORDER BY (SELECT ... WHERE ...)" statements, which triggers a NULL pointer dereference in the Item_singlerow_subselect::store function.

РелизСтатусПримечание
dapper

DNE

devel

not-affected

5.1.49-1ubuntu8
hardy

DNE

karmic

DNE

lucid

DNE

maverick

not-affected

5.1.49-1ubuntu8
natty

not-affected

5.1.49-1ubuntu8
oneiric

not-affected

5.1.49-1ubuntu8
upstream

released

5.1.49

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

hardy

DNE

karmic

DNE

lucid

ignored

maverick

ignored

natty

ignored

oneiric

ignored

upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

released

5.0.22-0ubuntu6.06.15
devel

DNE

hardy

released

5.0.51a-3ubuntu5.8
karmic

ignored

end of life
lucid

DNE

maverick

DNE

natty

DNE

oneiric

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

hardy

DNE

karmic

released

5.1.37-1ubuntu5.5
lucid

released

5.1.41-3ubuntu12.7
maverick

DNE

natty

DNE

oneiric

DNE

upstream

released

5.1.49

Показывать по

Ссылки на источники

EPSS

Процентиль: 83%
0.02058
Низкий

4 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2010-3682

redhat
больше 15 лет назад

Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using EXPLAIN with crafted "SELECT ... UNION ... ORDER BY (SELECT ... WHERE ...)" statements, which triggers a NULL pointer dereference in the Item_singlerow_subselect::store function.

nvd логотип

CVE-2010-3682

nvd
почти 15 лет назад

Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using EXPLAIN with crafted "SELECT ... UNION ... ORDER BY (SELECT ... WHERE ...)" statements, which triggers a NULL pointer dereference in the Item_singlerow_subselect::store function.

debian логотип

CVE-2010-3682

debian
почти 15 лет назад

Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote aut ...

github логотип

GHSA-5vcg-4cg3-gq34

github
больше 3 лет назад

Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using EXPLAIN with crafted "SELECT ... UNION ... ORDER BY (SELECT ... WHERE ...)" statements, which triggers a NULL pointer dereference in the Item_singlerow_subselect::store function.

oracle-oval логотип

ELSA-2010-0825

oracle-oval
около 15 лет назад

ELSA-2010-0825: mysql security update (MODERATE)

EPSS

Процентиль: 83%
0.02058
Низкий

4 Medium

CVSS2