FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mysql -- heap buffer overflow with prepared statements

Affected packages
4.1.0 <= mysql-client <= 4.1.4
4.1.0 <= mysql-server <= 4.1.4

Details

VuXML ID 77420ebb-0cf4-11d9-8a8a-000c41e2cdad
Discovery 2004-09-08
Entry 2004-09-23

There is a buffer overflow in the prepared statements API (libmysqlclient) when a statement containing thousands of placeholders is executed.

References

URL http://bugs.mysql.com/bug.php?id=5194
URL http://dev.mysql.com/doc/mysql/en/News-4.1.5.html
URL http://mysql.bkbits.net:8080/mysql-4.1/cset@1.1932.152.4