CVE-2006-3081
CVSS4.0
发布时间 :2006-06-19 14:02:00
修订时间 :2011-03-07 21:37:47
NMCOPS    

[原文]mysqld in MySQL 4.1.x before 4.1.18, 5.0.x before 5.0.19, and 5.1.x before 5.1.6 allows remote authorized users to cause a denial of service (crash) via a NULL second argument to the str_to_date function.


[CNNVD]MySQL Server mysqld 拒绝服务漏洞(CNNVD-200606-346)

        MySQL 4.1.18中的mysqld可以使远程授权用户借助对str_to_date函数的NULL第二引数,引起拒绝服务(崩溃)。

- CVSS (基础分值)

CVSS分值: 4 [中等(MEDIUM)]
机密性影响: NONE [对系统的机密性无影响]
完整性影响: NONE [不会对系统完整性产生影响]
可用性影响: PARTIAL [可能会导致性能下降或中断资源访问]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

cpe:/a:mysql:mysql:5.0.3MySQL MySQL 5.0.3
cpe:/a:mysql:mysql:5.0.4MySQL MySQL 5.0.4
cpe:/a:mysql:mysql:4.1.16MySQL MySQL 4.1.16
cpe:/a:mysql:mysql:4.0.18MySQL MySQL 4.0.18
cpe:/a:mysql:mysql:5.0.0MySQL MySQL 5.0.0
cpe:/a:mysql:mysql:4.1.13MySQL MySQL 4.1.13
cpe:/a:mysql:mysql:4.1.4MySQL MySQL 4.1.4
cpe:/a:mysql:mysql:5.0.2MySQL MySQL 5.0.2
cpe:/a:mysql:mysql:4.1.7MySQL MySQL 4.1.7
cpe:/a:mysql:mysql:4.1.15MySQL MySQL 4.1.15
cpe:/a:mysql:mysql:5.0.18MySQL MySQL 5.0.18
cpe:/a:mysql:mysql:5.1.5MySQL 5.1.5
cpe:/a:mysql:mysql:5.0.1MySQL MySQL 5.0.1
cpe:/a:mysql:mysql:4.1.5MySQL MySQL 4.1.5

- OVAL (用于检测的技术细节)

oval:org.mitre.oval:def:9516mysqld in MySQL 4.1.x before 4.1.18, 5.0.x before 5.0.19, and 5.1.x before 5.1.6 allows remote authorized users to cause a denial of service...
*OVAL详细的描述了检测该漏洞的方法,你可以从相关的OVAL定义中找到更多检测该漏洞的技术细节。

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3081
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-3081
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200606-346
(官方数据源) CNNVD

- 其它链接及资源

http://www.us-cert.gov/cas/techalerts/TA06-208A.html
(UNKNOWN)  CERT  TA06-208A
http://www.us-cert.gov/cas/techalerts/TA07-072A.html
(UNKNOWN)  CERT  TA07-072A
http://www.vupen.com/english/advisories/2007/0930
(UNKNOWN)  VUPEN  ADV-2007-0930
http://www.ubuntulinux.org/support/documentation/usn/usn-306-1
(UNKNOWN)  UBUNTU  USN-306-1
http://www.securityfocus.com/bid/18439
(UNKNOWN)  BID  18439
http://www.securityfocus.com/archive/1/archive/1/437571/100/0/threaded
(UNKNOWN)  BUGTRAQ  20060615 Re: MySQL DoS
http://www.securityfocus.com/archive/1/437277
(UNKNOWN)  BUGTRAQ  20060615 Re: MySQL DoS
http://www.securityfocus.com/archive/1/437145
(UNKNOWN)  BUGTRAQ  20060614 MySQL DoS
http://www.debian.org/security/2006/dsa-1112
(UNKNOWN)  DEBIAN  DSA-1112
http://secunia.com/advisories/20871
(VENDOR_ADVISORY)  SECUNIA  20871
http://secunia.com/advisories/20832
(VENDOR_ADVISORY)  SECUNIA  20832
http://secunia.com/advisories/19929
(VENDOR_ADVISORY)  SECUNIA  19929
http://seclists.org/lists/fulldisclosure/2006/Jun/0434.html
(UNKNOWN)  FULLDISC  20060615 MySQL DoS
http://bugs.mysql.com/bug.php?id=15828
(UNKNOWN)  CONFIRM  http://bugs.mysql.com/bug.php?id=15828
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=373913
(UNKNOWN)  CONFIRM  http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=373913
http://xforce.iss.net/xforce/xfdb/27212
(UNKNOWN)  XF  mysql-select-dos(27212)
http://www.redhat.com/support/errata/RHSA-2007-0083.html
(UNKNOWN)  REDHAT  RHSA-2007:0083
http://www.mandriva.com/security/advisories?name=MDKSA-2006:111
(UNKNOWN)  MANDRIVA  MDKSA-2006:111
http://secunia.com/advisories/24479
(UNKNOWN)  SECUNIA  24479
http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html
(UNKNOWN)  APPLE  APPLE-SA-2007-03-13
http://docs.info.apple.com/article.html?artnum=305214
(UNKNOWN)  CONFIRM  http://docs.info.apple.com/article.html?artnum=305214

- 漏洞信息

MySQL Server mysqld 拒绝服务漏洞
中危 其他
2006-06-19 00:00:00 2006-08-17 00:00:00
远程  
        MySQL 4.1.18中的mysqld可以使远程授权用户借助对str_to_date函数的NULL第二引数,引起拒绝服务(崩溃)。

- 公告与补丁

        目前厂商已经发布了相关补丁,请到厂商的主页下载:
        Apple Mac OS X 10.4
        Apple Mac OS X v10.4.9
        http://www.apple.com/support/downloads/
        Apple Mac OS X 10.4.1
        Apple Mac OS X v10.4.9
        http://www.apple.com/support/downloads/
        Apple Mac OS X 10.4.2
        Apple Mac OS X v10.4.9
        http://www.apple.com/support/downloads/
        Apple Mac OS X 10.4.3
        Apple Mac OS X v10.4.9
        http://www.apple.com/support/downloads/
        Apple Mac OS X 10.4.4
        Apple Mac OS X v10.4.9
        http://www.apple.com/support/downloads/
        Apple Mac OS X 10.4.5
        Apple Mac OS X v10.4.9
        http://www.apple.com/support/downloads/
        Apple Mac OS X 10.4.6
        Apple Mac OS X v10.4.9
        http://www.apple.com/support/downloads/
        Apple Mac OS X 10.4.7
        Apple Mac OS X v10.4.9
        http://www.apple.com/support/downloads/
        Apple Mac OS X 10.4.8
        Apple Mac OS X v10.4.9
        http://www.apple.com/support/downloads/
        MySQL AB MySQL 4.1.11
        Debian libmysqlclient14-dev_4.1.11a-4sarge5_mips.deb
        Debian GNU/Linux 3.1 alias sarge
        http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysql client14-dev_4.1.11a-4sarge5_mips.deb
        Debian libmysqlclient14-dev_4.1.11a-4sarge5_mipsel.deb
        Debian GNU/Linux 3.1 alias sarge
        http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysql client14-dev_4.1.11a-4sarge5_mipsel.deb
        Debian libmysqlclient14-dev_4.1.11a-4sarge5_powerpc.deb
        Debian GNU/Linux 3.1 alias sarge
        http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysql client14-dev_4.1.11a-4sarge5_powerpc.deb
        Debian libmysqlclient14-dev_4.1.11a-4sarge5_s390.deb
        Debian GNU/Linux 3.1 alias sarge
        http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysql client14-dev_4.1.11a-4sarge5_s390.deb
        Debian libmysqlclient14-dev_4.1.11a-4sarge5_sparc.deb
        Debian GNU/Linux 3.1 alias sarge
        http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysql client14-dev_4.1.11a-4sarge5_sparc.deb
        Debian libmysqlclient14_4.1.11a-4sarge5_mips.deb
        Debian GNU/Linux 3.1 alias sarge
        http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysql client14_4.1.11a-4sarge5_mips.deb
        Debian libmysqlclient14_4.1.11a-4sarge5_mipsel.deb
        Debian GNU/Linux 3.1 alias sarge
        http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysql client14_4.1.11a-4sarge5_mipsel.deb
        Debian libmysqlclient14_4.1.11a-4sarge5_powerpc.deb
        Debian GNU/Linux 3.1 alias sarge
        ttp://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlc lient14_4.1.11a-4sarge5_powerpc.deb
        Debian libmysqlclient14_4.1.11a-4sarge5_s390.deb
        Debian GNU/Linux 3.1 alias sarge
        http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysql client14_4.1.11a-4sarge5_s390.deb
        Debian libmysqlclient14_4.1.11a-4sarge5_sparc.deb
        Debian GNU/Linux 3.1 alias sarge
        http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysql client14_4.1.11a-4sarge5_sparc.deb
        Debian mysql-client-4.1_4.1.11a-4sarge5_mips.deb
        Debian GNU/Linux 3.1 alias sarge
        http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-cl ient-4.1_4.1.11a-4sarge5_mips.deb
        Debian mysql-client-4.1_4.1.11a-4sarge5_mipsel.deb
        Debian GNU/Linux 3.1 alias sarge
        http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-cl ient-4.1_4.1.11a-4sarge5_mipsel.deb
        Debian mysql-client-4.1_4.1.11a-4sarge5_powerpc.deb
        Debian GNU/Linux 3.1 alias sarge
        http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-cl ient-4.1_4.1.11a-4sarge5_powerpc.deb
        Debian mysql-client-4.1_4.1.11a-4sarge5_s390.deb
        Debian GNU/Linux 3.1 alias sarge
        http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-cl ient-4.1_4.1.11a-4sarge5_s390.deb
        Debian mysql-client-4.1_4.1.11a-4sarge5_sparc.deb
        Debian GNU/Linux 3.1 alias sarge
        http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-cl ient-4.1_4.1.11a-4sarge5_sparc.deb
        Debian mysql-server-4.1_4.1.11a-4sarge5_mips.deb
        Debian GNU/Linux 3.1 alias sarge
        http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-se rver-4.1_4.1.11a-4sarge5_mips.deb
        Debian mysql-server-4.1_4.1.11a-4sarge5_mipsel.deb
        Debian GNU/Linux 3.1 alias sarge
        http://security.debian.org/pool/updates/main/m/mysql-dfs

- 漏洞信息 (F48389)

Debian Linux Security Advisory 1112-1 (PacketStormID:F48389)
2006-07-20 00:00:00
Debian  debian.org
advisory,denial of service,local,vulnerability
linux,debian
CVE-2006-3081,CVE-2006-3469
[点击下载]

Debian Security Advisory 1111-1 - Several local vulnerabilities have been discovered in the MySQL database server, which may lead to denial of service.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 1112-1                    security@debian.org
http://www.debian.org/security/                         Moritz Muehlenhoff
July 18th, 2006                         http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : mysql-dfsg-4.1
Vulnerability  : several
Problem-Type   : local
Debian-specific: no
CVE ID         : CVE-2006-3081 CVE-2006-3469
Debian Bug     : 373913 375694

Several local vulnerabilities have been discovered in the MySQL database
server, which may lead to denial of service. The Common
Vulnerabilities and Exposures project identifies the following problems:

CVE-2006-3081

    "Kanatoko" discovered that the server can be crashed with feeding
    NULL values to the str_to_date() function.

CVE-2006-3469

    Jean-David Maillefer discovered that the server can be crashed with
    specially crafted date_format() function calls.

For the stable distribution (sarge) these problems have been fixed in
version 4.1.11a-4sarge5.

For the unstable distribution (sid) does no longer contain MySQL 4.1
packages. MySQL 5.0 from sid is not affected.

We recommend that you upgrade your mysql-dfsg-4.1 packages.


Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-dfsg-4.1_4.1.11a-4sarge5.dsc
      Size/MD5 checksum:     1021 9cd4f7df9345856d06846e0ddb50b9ee
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-dfsg-4.1_4.1.11a-4sarge5.diff.gz
      Size/MD5 checksum:   168442 e45db0b01b3adaf09500d54090f3a1e1
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-dfsg-4.1_4.1.11a.orig.tar.gz
      Size/MD5 checksum: 15771855 3c0582606a8903e758c2014c2481c7c3

  Architecture independent components:

    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-common-4.1_4.1.11a-4sarge5_all.deb
      Size/MD5 checksum:    36520 e8115191126dc0b373a53024e5c78733

  Alpha architecture:

    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14_4.1.11a-4sarge5_alpha.deb
      Size/MD5 checksum:  1590788 297b4444903885a19c76a1217e83477d
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14-dev_4.1.11a-4sarge5_alpha.deb
      Size/MD5 checksum:  7965184 8df4e20d157517541228fa52e4c60dbc
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-client-4.1_4.1.11a-4sarge5_alpha.deb
      Size/MD5 checksum:  1000952 4d62bca949f80c09f043a78b9e701ca5
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-server-4.1_4.1.11a-4sarge5_alpha.deb
      Size/MD5 checksum: 17487070 b357fcab1b57764e1ee8a341dd30def3

  AMD64 architecture:

    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14_4.1.11a-4sarge5_amd64.deb
      Size/MD5 checksum:  1452034 a22b66b8e00b2409bf1428834af1073b
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14-dev_4.1.11a-4sarge5_amd64.deb
      Size/MD5 checksum:  5551704 731f50735026de2b95d9e9d9e19a7717
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-client-4.1_4.1.11a-4sarge5_amd64.deb
      Size/MD5 checksum:   849526 a0a5d944db8261044bcdddbe55ab03d6
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-server-4.1_4.1.11a-4sarge5_amd64.deb
      Size/MD5 checksum: 14711282 bf471f8b19fe0aa14bf04209c0eac975

  ARM architecture:

    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14_4.1.11a-4sarge5_arm.deb
      Size/MD5 checksum:  1388864 1ed00eac905063c7caa7702bb6a4dcda
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14-dev_4.1.11a-4sarge5_arm.deb
      Size/MD5 checksum:  5558854 46fac3302d6e4677bb1dbce5f5aa1387
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-client-4.1_4.1.11a-4sarge5_arm.deb
      Size/MD5 checksum:   836766 5487191a4af54786066ac720456b5b68
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-server-4.1_4.1.11a-4sarge5_arm.deb
      Size/MD5 checksum: 14557630 1369e1f83fad8dfcbea1618e0acd821e

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14_4.1.11a-4sarge5_i386.deb
      Size/MD5 checksum:  1418036 ab5768abe67a1d21c714a078f2ec86f0
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14-dev_4.1.11a-4sarge5_i386.deb
      Size/MD5 checksum:  5643732 bf891e68e488947fd28a940a367d722f
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-client-4.1_4.1.11a-4sarge5_i386.deb
      Size/MD5 checksum:   830724 f5d4a9e5b289d895ba021190f907829f
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-server-4.1_4.1.11a-4sarge5_i386.deb
      Size/MD5 checksum: 14558034 b580eeaf7a3806b95a07435acbe48e27

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14_4.1.11a-4sarge5_ia64.deb
      Size/MD5 checksum:  1713308 0067b2b9c41a412defde52f366e3c897
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14-dev_4.1.11a-4sarge5_ia64.deb
      Size/MD5 checksum:  7782486 3aabc5d9cf4bd642de338d58bdaf06f5
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-client-4.1_4.1.11a-4sarge5_ia64.deb
      Size/MD5 checksum:  1050616 d23aac0cd8ee2af56e54dfb5bac2f330
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-server-4.1_4.1.11a-4sarge5_ia64.deb
      Size/MD5 checksum: 18475936 9ddfe01a4b31abfed11b9bde23fac76f

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14_4.1.11a-4sarge5_hppa.deb
      Size/MD5 checksum:  1551202 77244af3e0edbeaf716764fe9ac81e6f
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14-dev_4.1.11a-4sarge5_hppa.deb
      Size/MD5 checksum:  6250286 fd9cb45d760605ee2a89f70af5cb9af3
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-client-4.1_4.1.11a-4sarge5_hppa.deb
      Size/MD5 checksum:   910046 38698cebd4b9f438fd09d9bbb9dcd92c
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-server-4.1_4.1.11a-4sarge5_hppa.deb
      Size/MD5 checksum: 15791130 8517866821789c2ac7343f9db6f59d3f

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14_4.1.11a-4sarge5_m68k.deb
      Size/MD5 checksum:  1397964 e5166b54d56236e0bcbd677ae0b0612f
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14-dev_4.1.11a-4sarge5_m68k.deb
      Size/MD5 checksum:  5284080 48f187b76145ed53de71074d1e19bd6a
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-client-4.1_4.1.11a-4sarge5_m68k.deb
      Size/MD5 checksum:   803870 699c9078240853a353fbd70504285d51
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-server-4.1_4.1.11a-4sarge5_m68k.deb
      Size/MD5 checksum: 14072018 f2837081c2ff82f8510234e174db38b4

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14_4.1.11a-4sarge5_mips.deb
      Size/MD5 checksum:  1478938 f6865d5d185ecc5b20dac7d0d7e129da
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14-dev_4.1.11a-4sarge5_mips.deb
      Size/MD5 checksum:  6053046 43b3f77618248df20870c85301465095
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-client-4.1_4.1.11a-4sarge5_mips.deb
      Size/MD5 checksum:   904490 351bde467510be873c1a2cdc57048523
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-server-4.1_4.1.11a-4sarge5_mips.deb
      Size/MD5 checksum: 15409966 a0332059581d3de6922e9313d6eef676

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14_4.1.11a-4sarge5_mipsel.deb
      Size/MD5 checksum:  1446348 46a4c7d996016a4adcf56440b05fef21
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14-dev_4.1.11a-4sarge5_mipsel.deb
      Size/MD5 checksum:  5971326 6467ab19215d4e0e45084d3530929683
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-client-4.1_4.1.11a-4sarge5_mipsel.deb
      Size/MD5 checksum:   890130 52b93510c81b7d296074fc4c36a6d847
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-server-4.1_4.1.11a-4sarge5_mipsel.deb
      Size/MD5 checksum: 15105474 1ffe09b6dc5b370067bf337109188a25

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14_4.1.11a-4sarge5_powerpc.deb
      Size/MD5 checksum:  1476860 3b5a3a41dcb3744a289e78e3310d1df1
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14-dev_4.1.11a-4sarge5_powerpc.deb
      Size/MD5 checksum:  6027448 99a562b660721bc4dacd8997de8aab1f
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-client-4.1_4.1.11a-4sarge5_powerpc.deb
      Size/MD5 checksum:   907410 9893e547ddfe66215e6bc3da4bf69724
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-server-4.1_4.1.11a-4sarge5_powerpc.deb
      Size/MD5 checksum: 15403210 25c8ae97be006ad171df2f3bdedc72a2

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14_4.1.11a-4sarge5_s390.deb
      Size/MD5 checksum:  1538550 b105d416c3bcd7875984cecac926d076
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14-dev_4.1.11a-4sarge5_s390.deb
      Size/MD5 checksum:  5461556 00100b922054d9b9c3fc22b3a92b60c7
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-client-4.1_4.1.11a-4sarge5_s390.deb
      Size/MD5 checksum:   884294 37fe2778f39871852f9fa53677cffe2c
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-server-4.1_4.1.11a-4sarge5_s390.deb
      Size/MD5 checksum: 15055516 c22496ba5559e2fbb1f0a37cd889ee0b

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14_4.1.11a-4sarge5_sparc.deb
      Size/MD5 checksum:  1460576 f4a2d46769a708b1ef70aa85e2b09277
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/libmysqlclient14-dev_4.1.11a-4sarge5_sparc.deb
      Size/MD5 checksum:  6208040 3dc2de911cc6cbcb4f637bfccbce988a
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-client-4.1_4.1.11a-4sarge5_sparc.deb
      Size/MD5 checksum:   868258 1671384fa14d81404e3af7ffb555073e
    http://security.debian.org/pool/updates/main/m/mysql-dfsg-4.1/mysql-server-4.1_4.1.11a-4sarge5_sparc.deb
      Size/MD5 checksum: 15392304 6d9b9d762aa6088e416c1b987f853e96


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)

iD8DBQFEvBoaXm3vHE4uyloRAjNHAKDYCyylFbJzy7B6HNonbBeY6hQdzACfZvwM
StoPTSj1GPfq6J9j5qveWTs=
=JCBl
-----END PGP SIGNATURE-----

    

- 漏洞信息 (F47778)

Mandriva Linux Security Advisory 2006.111 (PacketStormID:F47778)
2006-06-27 00:00:00
Mandriva  mandriva.com
advisory,remote,denial of service
linux,mandriva
CVE-2006-3081
[点击下载]

Mandriva Linux Security Advisory MDKSA-2006-111 - Mysqld in MySQL 4.1.x before 4.1.18, 5.0.x before 5.0.19, and 5.1.x before 5.1.6 allows remote authorized users to cause a denial of service (crash) via a NULL second argument to the str_to_date function. MySQL 4.0.18 in Corporate 3.0 and MNF 2.0 is not affected by this issue.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2006:111
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : MySQL
 Date    : June 23, 2006
 Affected: 10.2, 2006.0
 _______________________________________________________________________
 
 Problem Description:
 
 Mysqld in MySQL 4.1.x before 4.1.18, 5.0.x before 5.0.19, and 5.1.x before 
 5.1.6 allows remote authorized users to cause a denial of service (crash) 
 via a NULL second argument to the str_to_date function.
 
 MySQL 4.0.18 in Corporate 3.0 and MNF 2.0 is not affected by this issue.
 
 Packages have been patched to correct this issue.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3081
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 10.2:
 78e8411d4173067449ab40b253359584  10.2/RPMS/libmysql14-4.1.11-1.6.102mdk.i586.rpm
 1b8c46014749729fd853c6dcee91eaed  10.2/RPMS/libmysql14-devel-4.1.11-1.6.102mdk.i586.rpm
 996f92c1d1cb685938a1b019d8b637c0  10.2/RPMS/MySQL-4.1.11-1.6.102mdk.i586.rpm
 766fa948a6d3e0094658aa936a76e203  10.2/RPMS/MySQL-bench-4.1.11-1.6.102mdk.i586.rpm
 587b166b5e24e39df778d1a49ca26c60  10.2/RPMS/MySQL-client-4.1.11-1.6.102mdk.i586.rpm
 26e3fd9cf0a5977e2b934c12ad9500fc  10.2/RPMS/MySQL-common-4.1.11-1.6.102mdk.i586.rpm
 66f223fa9cfe196c01c6e4b311d70a65  10.2/RPMS/MySQL-Max-4.1.11-1.6.102mdk.i586.rpm
 550a497e8f5fb748b9a91a0717da6c48  10.2/RPMS/MySQL-NDB-4.1.11-1.6.102mdk.i586.rpm
 c3cd6a33370387b6b7ef26810d04ed5e  10.2/SRPMS/MySQL-4.1.11-1.6.102mdk.src.rpm

 Mandriva Linux 10.2/X86_64:
 b93aa5af71b0fc8752b59ea9e137fbb9  x86_64/10.2/RPMS/lib64mysql14-4.1.11-1.6.102mdk.x86_64.rpm
 97baf24556b164bd67d7456f662788a2  x86_64/10.2/RPMS/lib64mysql14-devel-4.1.11-1.6.102mdk.x86_64.rpm
 2e1874294dd1bd7bb66eca3db4b84f9f  x86_64/10.2/RPMS/MySQL-4.1.11-1.6.102mdk.x86_64.rpm
 e59c30459703a1143a6a5c2aa962fdeb  x86_64/10.2/RPMS/MySQL-bench-4.1.11-1.6.102mdk.x86_64.rpm
 921411f6d52933199902eae720bdfc4c  x86_64/10.2/RPMS/MySQL-client-4.1.11-1.6.102mdk.x86_64.rpm
 ee8319140b47877d3920a6f789f10076  x86_64/10.2/RPMS/MySQL-common-4.1.11-1.6.102mdk.x86_64.rpm
 5ecce7afbba4fd0ddd9e36ef068cb007  x86_64/10.2/RPMS/MySQL-Max-4.1.11-1.6.102mdk.x86_64.rpm
 7f30cc287096f0a28347b9a18454bdf8  x86_64/10.2/RPMS/MySQL-NDB-4.1.11-1.6.102mdk.x86_64.rpm
 c3cd6a33370387b6b7ef26810d04ed5e  x86_64/10.2/SRPMS/MySQL-4.1.11-1.6.102mdk.src.rpm

 Mandriva Linux 2006.0:
 bbad68193933b00b85f243e80280f954  2006.0/RPMS/libmysql14-4.1.12-4.3.20060mdk.i586.rpm
 c8f89626e74f928e1f997d547ea9e5ff  2006.0/RPMS/libmysql14-devel-4.1.12-4.3.20060mdk.i586.rpm
 7274a11988a77408823e0fef2375cc16  2006.0/RPMS/MySQL-4.1.12-4.3.20060mdk.i586.rpm
 e63c7660cb86a3e0d3240d00a43e53a9  2006.0/RPMS/MySQL-bench-4.1.12-4.3.20060mdk.i586.rpm
 aa902a285d22f9df2a33dc7d9490c3f7  2006.0/RPMS/MySQL-client-4.1.12-4.3.20060mdk.i586.rpm
 633d3a283dd19ea2a51448b815ad53a9  2006.0/RPMS/MySQL-common-4.1.12-4.3.20060mdk.i586.rpm
 96ce79cfbda19d2af7ba81de922561c1  2006.0/RPMS/MySQL-Max-4.1.12-4.3.20060mdk.i586.rpm
 0e83d8f9db5f77d08a0c876befbe1a67  2006.0/RPMS/MySQL-NDB-4.1.12-4.3.20060mdk.i586.rpm
 7e92a87a1fbe7b3dad96372a678a2c65  2006.0/SRPMS/MySQL-4.1.12-4.3.20060mdk.src.rpm

 Mandriva Linux 2006.0/X86_64:
 3abed6dfe1aff3e142effab7438f1813  x86_64/2006.0/RPMS/lib64mysql14-4.1.12-4.3.20060mdk.x86_64.rpm
 d29d7cc058e7cd5af8068db37e2170e8  x86_64/2006.0/RPMS/lib64mysql14-devel-4.1.12-4.3.20060mdk.x86_64.rpm
 4dd7efc9fcd7fd77cc6a5f4b9e2294f5  x86_64/2006.0/RPMS/MySQL-4.1.12-4.3.20060mdk.x86_64.rpm
 7b2f19ea6fd61a972038ea79063167e3  x86_64/2006.0/RPMS/MySQL-bench-4.1.12-4.3.20060mdk.x86_64.rpm
 434eaff2f79e6dcb6d4ad6ca7d538259  x86_64/2006.0/RPMS/MySQL-client-4.1.12-4.3.20060mdk.x86_64.rpm
 49aa9dcfbe79d8a91ad6823d505f19ac  x86_64/2006.0/RPMS/MySQL-common-4.1.12-4.3.20060mdk.x86_64.rpm
 bfa5996ca7e57f071fcc4a2574883a8e  x86_64/2006.0/RPMS/MySQL-Max-4.1.12-4.3.20060mdk.x86_64.rpm
 9df2f30b72c53bd4be9c92b4146e5c79  x86_64/2006.0/RPMS/MySQL-NDB-4.1.12-4.3.20060mdk.x86_64.rpm
 7e92a87a1fbe7b3dad96372a678a2c65  x86_64/2006.0/SRPMS/MySQL-4.1.12-4.3.20060mdk.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  <security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFEm+2vmqjQ0CJFipgRAp03AKCBqLEYfQYn+lpIV8ORd0ET05DCKwCgnaYx
58aB4ezFDNLNyf9NyjyTGIs=
=Hla8
-----END PGP SIGNATURE-----

    

- 漏洞信息

27054
MySQL mysqld str_to_date Function NULL Argument DoS
Denial of Service
Loss of Availability
Vendor Verified

- 漏洞描述

Unknown or Incomplete

- 时间线

2006-06-14 Unknow
Unknow Unknow

- 解决方案

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

MySQL Server Str_To_Date Remote Denial Of Service Vulnerability
Failure to Handle Exceptional Conditions 18439
Yes No
2006-06-14 12:00:00 2007-03-14 04:44:00
This issue was discovered by Kanatoko <anvil@jumperz.net>.

- 受影响的程序版本

Ubuntu Ubuntu Linux 5.10 sparc
Ubuntu Ubuntu Linux 5.10 powerpc
Ubuntu Ubuntu Linux 5.10 i386
Ubuntu Ubuntu Linux 5.10 amd64
MySQL AB MySQL 5.1.5
MySQL AB MySQL 5.0.18
MySQL AB MySQL 5.0.4
MySQL AB MySQL 5.0.3
MySQL AB MySQL 5.0.2
MySQL AB MySQL 5.0.1
MySQL AB MySQL 5.0 .0-0
MySQL AB MySQL 4.1.16
MySQL AB MySQL 4.1.15
MySQL AB MySQL 4.1.13
MySQL AB MySQL 4.1.12
MySQL AB MySQL 4.1.11
MySQL AB MySQL 4.1.7
MySQL AB MySQL 4.1.5
MySQL AB MySQL 4.1.4
MySQL AB MySQL 4.0.18
+ MandrakeSoft Corporate Server 3.0 x86_64
+ MandrakeSoft Corporate Server 3.0
+ Mandriva Linux Mandrake 10.0 AMD64
+ Mandriva Linux Mandrake 10.0
Debian Linux 3.1 sparc
Debian Linux 3.1 s/390
Debian Linux 3.1 ppc
Debian Linux 3.1 mipsel
Debian Linux 3.1 mips
Debian Linux 3.1 m68k
Debian Linux 3.1 ia-64
Debian Linux 3.1 ia-32
Debian Linux 3.1 hppa
Debian Linux 3.1 arm
Debian Linux 3.1 amd64
Debian Linux 3.1 alpha
Debian Linux 3.1
Apple Mac OS X 10.4.8
Apple Mac OS X 10.4.7
Apple Mac OS X 10.4.6
Apple Mac OS X 10.4.5
Apple Mac OS X 10.4.4
Apple Mac OS X 10.4.3
Apple Mac OS X 10.4.2
Apple Mac OS X 10.4.1
Apple Mac OS X 10.4
MySQL AB MySQL 5.1.6
MySQL AB MySQL 5.0.19
MySQL AB MySQL 4.1.18
Apple Mac OS X Server 10.4.9

- 不受影响的程序版本

MySQL AB MySQL 5.1.6
MySQL AB MySQL 5.0.19
MySQL AB MySQL 4.1.18
Apple Mac OS X Server 10.4.9

- 漏洞讨论

MySQL is susceptible to a remote denial-of-service vulnerability. This issue is due to the database server's failure to properly handle unexpected input.

This issue allows remote attackers to crash affected database servers, denying service to legitimate users. Attackers must be able to execute arbitrary SQL statements on affected servers, which requires valid credentials to connect to affected servers.

Attackers may exploit this issue in conjunction with latent SQL-injection vulnerabilities in other applications.

Versions of MySQL prior to 4.1.18, 5.0.19, and 5.1.6 are vulnerable to this issue.

- 漏洞利用

Attackers use standard database client software to exploit this issue.

The following SQL statement will demonstrate this issue:

select str_to_date( 1, NULL );

- 解决方案

The vendor has released fixed versions of MySQL to address this issue. Versions newer than or equal to 4.1.18, 5.0.19, or 5.1.6 include a fix for this issue.

Please see the referenced vendor advisories for more information.


Apple Mac OS X 10.4

Apple Mac OS X 10.4.1

Apple Mac OS X 10.4.2

Apple Mac OS X 10.4.3

Apple Mac OS X 10.4.4

Apple Mac OS X 10.4.5

Apple Mac OS X 10.4.6

Apple Mac OS X 10.4.7

Apple Mac OS X 10.4.8

MySQL AB MySQL 4.1.11

MySQL AB MySQL 4.1.12

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站