FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mysql -- remote dos via malformed password packet

Affected packages
4.1 <= mysql-server < 4.1.24
5.0 <= mysql-server < 5.0.44
5.1 <= mysql-server < 5.1.20

Details

VuXML ID 240ac24c-dff3-11dd-a765-0030843d3802
Discovery 2007-07-15
Entry 2009-01-11

MySQL reports:

A malformed password packet in the connection protocol could cause the server to crash.

References

Bugtraq ID 25017
CVE Name CVE-2007-3780
URL http://bugs.mysql.com/bug.php?id=28984