CVE-2012-5529
Published: 20 November 2012
TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled, allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) by preparing an empty dynamic SQL query.
Priority
Status
Package | Release | Status |
---|---|---|
firebird2.5 Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
lucid |
Does not exist
|
|
oneiric |
Released
(2.5.0.26074-0.ds4-5ubuntu0.1)
|
|
precise |
Released
(2.5.1.26351.ds4-2ubuntu0.1)
|
|
quantal |
Released
(2.5.2~svn+54698.ds4-1ubuntu0.12.10.1)
|
|
upstream |
Needs triage
|
|
Patches: upstream: http://firebird.svn.sourceforge.net/viewvc/firebird?pathrev=54702&revision=54702&view=revision |