Red Hat Bugzilla – Bug 1461091
Test case failure: /CoreOS/mysql/Security/CVE-2012-0540-unspecified-vulnerability-related-to-GIS-extension-DoS
Last modified: 2017-06-23 03:46:22 EDT
Filed from caserun https://tcms.engineering.redhat.com/run/311469/#caserun_15765057
Version-Release number of selected component (if applicable):
Steps to Reproduce:
run the test
ERROR 3055 (HY000) at line 1: Geometry byte string must be little endian.
no such error, null result
looks like an expected change of behaviour - stricter input checks, but I cannot find it in docs, Michale, Honzo, could you take a look, please?
Worth mentioning that the test fails the same with 5.7.16, so it is not a regression. The code around this check did not change since 5.7.5, so I expect it is an expected behaviour for 5.7 (https://github.com/mysql/mysql-server/blame/5.7/sql/spatial.cc#L367).
Also, going a step back, more stricter checking of values might be just another way to avoid crashes, so to me it looks like such error should be also taken as test PASSED, since what we really need to check where is whether the daemon crashes or not.
So, I'm more in favor rewriting the test so that it returns PASS on this error.