Summary: | dev-db/firebird: DoS (CVE-2012-5529) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | trivial | CC: | patrick, proxy-maint, wlt-ml |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.openwall.com/lists/oss-security/2012/11/14/6 | ||
Whiteboard: | ~3 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Agostino Sarubbo
2012-11-14 20:18:43 UTC
CVE-2012-5529 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-5529): TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled, allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) by preparing an empty dynamic SQL query. i just drop old affected version 2.5.1.x i mean. (It was acked by Patrick). So, closed as noglsa. |