Speaking of MySQL, the following item recently showed up in an FrSIRT advisory. In light of last week's vendor-sec discussions, let me know if there's too much guesswork going on here :)
- Steve ====================================================== Name: CVE-2006-3486 Status: Candidate URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3486 Acknowledged: yes changelog Announced: 20060704 Flaw: buf Reference: MISC:http://bugs.mysql.com/bug.php?id=20622 Reference: CONFIRM:http://dev.mysql.com/doc/refman/5.1/en/news-5-1-12.html Reference: CONFIRM:http://dev.mysql.com/doc/refman/5.0/en/news-5-0-23.html Reference: FRSIRT:ADV-2006-2700 Reference: URL:http://www.frsirt.com/english/advisories/2006/2700 Off-by-one buffer overflow in the Instance_options::complete_initialization function in instance_options.cc in the Instance Manager in MySQL before 5.0.23 and 5.1 before 5.1.12 might allow local users to cause a denial of service (application crash) via unspecified vectors, which triggers the overflow when the convert_dirname function is called. Analysis: ACKNOWLEDGEMENT: MySQL 5.0.23 changelog " A buffer overwrite error in Instance Manager caused a crash. (Bug#20622)" ACCURACY: it is not clear whether this is security-relevant, as the input vectors are unknown. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
