{"id":"MGASA-2018-0031","summary":"Updated perl-DBD-mysql packages fix security vulnerability","details":"Pali Rohar discovered that DBD::mysql constructed an error message in a\nfixed-length buffer, leading to a crash (_FORTIFY_SOURCE failure) and,\npotentially, to denial of service (CVE-2016-1246).\n\nA vulnerability was discovered in perl-DBD-MySQL that can lead to an\nout-of-bounds read when using server side prepared statements with an\nunaligned number of placeholders in WHERE condition and output fields in\nSELECT expression (CVE-2016-1249).\n\nThere is a vulnerability of type use-after-free affecting DBD::mysql\nbefore 4.041 when used with mysql_server_prepare=1 (CVE-2016-1251).\n\nThe DBD::mysql module through 4.043 for Perl allows remote attackers to\ncause a denial of service (use-after-free and application crash) or\npossibly have unspecified other impact by triggering (1) certain error\nresponses from a MySQL server or (2) a loss of a network connection to a\nMySQL server. The use-after-free defect was introduced by relying on\nincorrect Oracle mysql_stmt_close documentation and code examples\n(CVE-2017-10788).\n\nThe DBD::mysql module through 4.043 for Perl uses the mysql_ssl=1 setting\nto mean that SSL is optional (even though this setting's documentation has\na \"your communication with the server will be encrypted\" statement), which\nallows man-in-the-middle attackers to spoof servers via a\ncleartext-downgrade attack (CVE-2017-10789).\n\nNote that the CVE-2016-1246, CVE-2017-1249, and CVE-2016-1251 issues only\naffected Mageia 5.\n\nAlso note that server-side prepared statements are disabled by default.\n","modified":"2026-04-16T06:23:12.758730025Z","published":"2018-01-03T14:22:14Z","upstream":["CVE-2016-1246","CVE-2016-1249","CVE-2016-1251","CVE-2017-10788","CVE-2017-10789"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2018-0031.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=19522"},{"type":"WEB","url":"https://www.debian.org/security/2016/dsa-3684"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/NY3AHSF4ZPQQ5OGYZYNQOD7TBL7CAG4F/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/7BLHU5FAHMKZBZ4LAHIASWUJVK4O6JS6/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/3CWISRFDOB7YRPBNDD3BNIQHSRYBDD6S/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/TAWTNCSYWNBJHJR4AYQAAW65JVWDWMEW/"}],"affected":[{"package":{"name":"perl-DBD-mysql","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/perl-DBD-mysql?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.43.0-1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2018-0031.json"}},{"package":{"name":"perl-DBD-mysql","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/perl-DBD-mysql?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.43.0-1.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2018-0031.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}