The stupid question is the question not asked | |
PerlMonks |
DBD::mysql - SECURITY RELEASEby marto (Cardinal) |
on Oct 03, 2016 at 09:19 UTC ( [id://1173147]=perlnews: print w/replies, xml ) | Need Help?? |
There has been a security release of DBD::mysql, to address a bug dating back to 2005: "A vulnerability was discovered that can lead to a buffer overflow, possibly triggered by user supplied data. This vulnerability is present in all releases at least back to versions 3.0 of the driver, which were released in 2005. The CVE identifier for this vulnerability is CVE-2016-1246. A version including the fix for this vulnerability is available on CPAN at https://metacpan.org/pod/DBD::mysql Users of DBD::mysql are advised to patch their installations as soon as possible."
Back to
Perl News
|
|