Red Hat Bugzilla – Bug 85898
double-free vulnerability in mysqld < 3.23.55
Last modified: 2007-04-18 12:51:57 EDT
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.2) Gecko/20030208
Description of problem:
The URL provides the following summary:
Double-free vulnerability in mysqld for MySQL before 3.23.55 allows attackers
with MySQL access to cause a denial of service (crash) via mysql_change_user.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1.look at the code
Have a patch ready... building errata on 7.0/7.1/7.2/7.3/8.0/AS
Held this patch back and waited for MySQL 3.23.56 (which also includes a fix for a
root exploit). This will be available via the errata system.