MySQL两次堆释放堆破坏漏洞发布时间:2003-01-29 更新时间:2003-02-04 严重程度:高 威胁程度:普通用户访问权限 错误类型:边界检查错误 利用方式:服务器模式 BUGTRAQ ID:6718 受影响系统 MySQL AB MySQL 3.23.31详细描述 在MySQL中存在漏洞,mysql_change_user()函数处理中进行了两次内存释放,并可以造成拒绝服务。在某种环境下,恶意的MySQL客户端可以导致MySQL释放相同的内存两次。 测试代码 尚无 解决方案 请安装相应的补丁。 MySQL AB MySQL 3.23.31: MySQL AB MySQL 3.23.36: MySQL AB MySQL 3.23.41: MySQL AB MySQL 3.23.47: MySQL AB MySQL 3.23.52: MySQL AB Upgrade MySQL 3.23.55 http://www.mysql.com/downloads/mysql-3.23.html OpenPKG RPM mysql-3.23.52-1.1.2.src.rpm ftp://ftp.openpkg.org/release/1.1/UPD/mysql-3.23.52-1.1.2.src.rpm MySQL AB MySQL 3.23.53: MySQL AB Upgrade MySQL 3.23.55 http://www.mysql.com/downloads/mysql-3.23.html MySQL AB MySQL 3.23.54 a: MySQL AB Upgrade MySQL 3.23.55 http://www.mysql.com/downloads/mysql-3.23.html OpenPKG RPM mysql-3.23.54a-1.2.1.src.rpm ftp://ftp.openpkg.org/release/1.2/UPD/mysql-3.23.54a-1.2.1.src.rpm MySQL AB MySQL 3.23.54: MySQL AB Upgrade MySQL 3.23.55 http://www.mysql.com/downloads/mysql-3.23.html 相关信息 相关连接: OpenPKG-SA-2003.008: mysql - double free can cause denial of service http://www.securityfocus.com/advisories/4927 MDKSA-2003:013: Updated MySQL packages fix DoS vulnerability http://www.securityfocus.com/advisories/4936 MySQL 3.23.55 |
