1380375 – (CVE-2016-1246) CVE-2016-1246 perl-DBD-MySQL: Buffer overflow triggered by user supplied data

Bug 1380375 (CVE-2016-1246) - CVE-2016-1246 perl-DBD-MySQL: Buffer overflow triggered by user supplied data

Summary: CVE-2016-1246 perl-DBD-MySQL: Buffer overflow triggered by user supplied data

Keywords:
Status:	CLOSED WONTFIX
Alias:	CVE-2016-1246
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	1381280 1382016
Blocks:	1380376
TreeView+	depends on / blocked

Reported:	2016-09-29 12:20 UTC by Adam Mariš
Modified:	2021-06-29 13:46 UTC (History)
CC List:	8 users (show)
Fixed In Version:	perl-DBD-MySQL 4.0.37
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2016-10-13 10:01:58 UTC
Embargoed:

Attachments	(Terms of Use)

Description Adam Mariš 2016-09-29 12:20:42 UTC

A buffer overflow vulnerability in prepared statements that could be possibly triggered by user supplied data was found in perl DBI driver for MySQL. Vulnerability is present in all releases at least back to versions 3.0 of the driver released in 2005.

Comment 1 Adam Mariš 2016-10-03 14:46:32 UTC

Upstream patch:

https://github.com/perl5-dbi/DBD-mysql/commit/7c164a0c86cec6ee95df1d141e67b0e85dfdefd2

Comment 2 Adam Mariš 2016-10-03 14:48:46 UTC

Created perl-DBD-MySQL tracking bugs for this issue:

Affects: fedora-all [bug 1381280]

Comment 8 Dhiru Kholia 2016-10-14 04:54:08 UTC

On RHEL / Fedora, the FORTIFY_SOURCE compilation option catches this stack-based buffer overflow, and it turns a flaw which could result in arbitrary code execution into a mere crash. Our CVSS score reflects this fact.

Note You need to log in before you can comment on or make changes to this bug.