Search CVE reports
101 – 110 of 150 results
CVE-2009-4484
Medium prioritySome fixes available 8 of 10
Multiple stack-based buffer overflows in the CertDecoder::GetName function in src/asn.cpp in TaoCrypt in yaSSL before 1.9.9, as used in mysqld in MySQL 5.0.x before 5.0.90, MySQL 5.1.x before 5.1.43, MySQL 5.5.x through 5.5.0-m2,...
3 affected packages
mysql-5.1, mysql-dfsg-5.0, mysql-dfsg-5.1
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| mysql-5.1 | — | — | — | — | — |
| mysql-dfsg-5.0 | — | — | — | — | — |
| mysql-dfsg-5.1 | — | — | — | — | — |
CVE-2009-4028
Medium priorityThe vio_verify_callback function in viosslfactories.c in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41, when OpenSSL is used, accepts a value of zero for the depth of X.509 certificates, which allows...
4 affected packages
mysql-dfsg, mysql-dfsg-4.1, mysql-dfsg-5.0, mysql-dfsg-5.1
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| mysql-dfsg | — | — | — | — | — |
| mysql-dfsg-4.1 | — | — | — | — | — |
| mysql-dfsg-5.0 | — | — | — | — | — |
| mysql-dfsg-5.1 | — | — | — | — | — |
CVE-2009-4030
Medium prioritySome fixes available 8 of 12
MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with...
5 affected packages
mysql-5.1, mysql-dfsg, mysql-dfsg-4.1, mysql-dfsg-5.0, mysql-dfsg-5.1
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| mysql-5.1 | — | — | — | — | — |
| mysql-dfsg | — | — | — | — | — |
| mysql-dfsg-4.1 | — | — | — | — | — |
| mysql-dfsg-5.0 | — | — | — | — | — |
| mysql-dfsg-5.1 | — | — | — | — | — |
CVE-2009-4019
Medium prioritySome fixes available 5 of 9
mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not (1) properly handle errors during execution of certain SELECT statements with subqueries, and does not (2) preserve certain null_value flags during execution of...
5 affected packages
mysql-5.1, mysql-dfsg, mysql-dfsg-4.1, mysql-dfsg-5.0, mysql-dfsg-5.1
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| mysql-5.1 | — | — | — | — | — |
| mysql-dfsg | — | — | — | — | — |
| mysql-dfsg-4.1 | — | — | — | — | — |
| mysql-dfsg-5.0 | — | — | — | — | — |
| mysql-dfsg-5.1 | — | — | — | — | — |
CVE-2008-7247
Low prioritySome fixes available 3 of 6
sql/sql_table.cc in MySQL 5.0.x through 5.0.88, 5.1.x through 5.1.41, and 6.0 before 6.0.9-alpha, when the data home directory contains a symlink to a different filesystem, allows remote authenticated users to bypass intended...
5 affected packages
mysql-5.1, mysql-dfsg, mysql-dfsg-4.1, mysql-dfsg-5.0, mysql-dfsg-5.1
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| mysql-5.1 | — | — | — | — | — |
| mysql-dfsg | — | — | — | — | — |
| mysql-dfsg-4.1 | — | — | — | — | — |
| mysql-dfsg-5.0 | — | — | — | — | — |
| mysql-dfsg-5.1 | — | — | — | — | — |
CVE-2009-2446
Low prioritySome fixes available 4 of 5
Multiple format string vulnerabilities in the dispatch_command function in libmysqld/sql_parse.cc in mysqld in MySQL 4.0.0 through 5.0.83 allow remote authenticated users to cause a denial of service (daemon crash) and possibly...
3 affected packages
mysql-5.1, mysql-dfsg-5.0, mysql-dfsg-5.1
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| mysql-5.1 | — | — | — | — | — |
| mysql-dfsg-5.0 | — | — | — | — | — |
| mysql-dfsg-5.1 | — | — | — | — | — |
CVE-2009-0819
Low prioritysql/item_xmlfunc.cc in MySQL 5.1 before 5.1.32 and 6.0 before 6.0.10 allows remote authenticated users to cause a denial of service (crash) via "an XPath expression employing a scalar expression as a FilterExpr with ExtractValue()...
3 affected packages
mysql-5.1, mysql-dfsg-5.0, mysql-dfsg-5.1
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| mysql-5.1 | — | — | — | — | — |
| mysql-dfsg-5.0 | — | — | — | — | — |
| mysql-dfsg-5.1 | — | — | — | — | — |
CVE-2008-4456
Low prioritySome fixes available 4 of 8
Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary...
3 affected packages
mysql-5.1, mysql-dfsg-5.0, mysql-dfsg-5.1
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| mysql-5.1 | — | — | — | — | — |
| mysql-dfsg-5.0 | — | — | — | — | — |
| mysql-dfsg-5.1 | — | — | — | — | — |
CVE-2008-4097
Medium prioritySome fixes available 3 of 4
MySQL 5.0.51a allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are associated with symlinks within pathnames for...
1 affected package
mysql-dfsg-5.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| mysql-dfsg-5.0 | — | — | — | — | — |
CVE-2008-4098
Medium prioritySome fixes available 4 of 5
MySQL before 5.0.67 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames...
1 affected package
mysql-dfsg-5.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| mysql-dfsg-5.0 | — | — | — | — | — |