[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

mysql-server-5.0: 5.0.32-7~bpo.1 vs 5.0.32-7etch1 (CVE-2007-1420)


don't know if just just oversaw it or if it's a time problem, but
mysql-server-5.0 in Sarge BPO (5.0.32-7~bpo.1) is vulnerable to
CVE-2007-1420[1] (database crash DoS via subselects), while the
version in Etch is fixed (5.0.32-7etch1) since 22-Mar-2007[2].

  [1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1420
  [2] http://packages.qa.debian.org/m/mysql-dfsg-5.0/news/20070322T223911Z.html

		Kind regards, Axel Beckert
Axel Beckert <beckert@phys.ethz.ch>       support: +41 44 633 2668
IT Support Group, HPR E 86.1              voice:   +41 44 633 4189
Departement Physik, ETH Zurich            fax:     +41 44 633 1239
CH-8093 Zurich, Switzerland		  http://nic.phys.ethz.ch/

Reply to: