|Bugzilla:||201904: CVE-2006-3469 mysql server DoS|
The MITRE CVE dictionary describes this issue as:
Format string vulnerability in time.cc in MySQL Server 4.1 before 4.1.21 and 5.0 before 1 April 2006 allows remote authenticated users to cause a denial of service (crash) via a format string instead of a date as the first parameter to the date_format function, which is later used in a formatted print call to display the error message.
This issue was addressed in mysql packages as shipped in Red Hat Enterprise Linux 4 via:
This issue did not affect mysql packages as shipped with Red Hat Enterprise Linux 2.1, 3, or 5, and Red Hat Application Stack v1 and v2.
Red Hat security errata
|Red Hat Enterprise Linux version 4 (mysql)||RHSA-2008:0768||July 24, 2008|
This page is generated automatically and has not been checked for errors or omissions.
For clarification or corrections please contact the Red Hat Security Response Team.