MySQL 5.x before 5.0.36 allows local users to cause a denial of service (database crash) by performing information_schema table subselects and using ORDER BY to sort a single-row result, which prevents certain structure elements from being initialized and triggers a NULL dereference in the filesort function.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Mysql | Mysql | 5.0.0 | 5.0.0 |
Mysql | Mysql | 5.0.1 | 5.0.1 |
Mysql | Mysql | 5.0.2 | 5.0.2 |
Mysql | Mysql | 5.0.3 | 5.0.3 |
Mysql | Mysql | 5.0.4 | 5.0.4 |
Mysql | Mysql | 5.0.5 | 5.0.5 |
Mysql | Mysql | 5.0.10 | 5.0.10 |
Mysql | Mysql | 5.0.15 | 5.0.15 |
Mysql | Mysql | 5.0.16 | 5.0.16 |
Mysql | Mysql | 5.0.17 | 5.0.17 |
Mysql | Mysql | 5.0.20 | 5.0.20 |
Mysql | Mysql | 5.0.24 | 5.0.24 |
Mysql | Mysql | 5.0.30 | 5.0.30 |
Mysql | Mysql | * | 5.0.33 |
Mysql | Oracle | 5.0.6 | 5.0.6 |
Mysql | Oracle | 5.0.7 | 5.0.7 |
Mysql | Oracle | 5.0.32 | 5.0.32 |
Mysql | Oracle | 5.0.41 | 5.0.41 |
Red Hat Enterprise Linux 5 | RedHat | mysql-0:5.0.45-7.el5 | * |
Mysql-dfsg-5.0 | Ubuntu | dapper | * |
Mysql-dfsg-5.0 | Ubuntu | devel | * |
Mysql-dfsg-5.0 | Ubuntu | edgy | * |
Mysql-dfsg-5.0 | Ubuntu | feisty | * |