Launchpad CVE tracker

CVE 2006-7232

sql_select.cc in MySQL 5.0.x before 5.0.32 and 5.1.x before 5.1.14 allows remote authenticated users to cause a denial of service (crash) via an EXPLAIN SELECT FROM on the INFORMATION_SCHEMA table, as originally demonstrated using ORDER BY.

Related bugs and status

CVE-2006-7232 (Candidate) is related to these bugs:

Bug #161127: Fix for MySQL Bug #22413 should be backported to LTS releases

Summary				In	Importance	Status
	161127	Fix for MySQL Bug #22413 should be backported to LTS releases		mysql-dfsg-5.0 (Ubuntu)	Undecided	Fix Released
	161127	Fix for MySQL Bug #22413 should be backported to LTS releases		mysql-dfsg-5.0 (Ubuntu Dapper)	Medium	Fix Released

Bug #201009: [mysql-dfsg-5.0] fix for several open vulnerabilities in -proposed

		In	Importance	Status
201009	[mysql-dfsg-5.0] fix for several open vulnerabilities in -proposed	mysql-dfsg-5.0 (Ubuntu)	Undecided	Fix Released
201009	[mysql-dfsg-5.0] fix for several open vulnerabilities in -proposed	mysql-dfsg-5.0 (Ubuntu Dapper)	High	Fix Released
201009	[mysql-dfsg-5.0] fix for several open vulnerabilities in -proposed	mysql-dfsg-5.0 (Ubuntu Edgy)	High	Fix Released
201009	[mysql-dfsg-5.0] fix for several open vulnerabilities in -proposed	mysql-dfsg-5.0 (Ubuntu Feisty)	High	Fix Released
201009	[mysql-dfsg-5.0] fix for several open vulnerabilities in -proposed	mysql-dfsg-5.0 (Ubuntu Gutsy)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://bugs.mysql.com/...
CONFIRM: http://dev.mysql.com/d...
CONFIRM: http://dev.mysql.com/d...
UBUNTU: USN-588-1
BID: 28351
SECUNIA: 29443
SUSE: SUSE-SR:2008:017
SECUNIA: 31687
REDHAT: RHSA-2008:0364
SECUNIA: 30351
OVAL: oval:org.mitre.oval:de...

Launchpad.net

CVE 2006-7232

Related bugs and status

Related bugs

References