Description

MariaDB 5.5.x before 5.5.30, 5.3.x before 5.3.13, 5.2.x before 5.2.15, and 5.1.x before 5.1.68, and Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote attackers to cause a denial of service (crash) via a crafted geometry feature that specifies a large number of points, which is not properly handled when processing the binary representation of this feature, related to a numeric calculation error.

Remediation

References

CVE-2013-1861

Related Vulnerabilities

Plone CMS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33510)

WordPress Plugin Email newsletter Cross-Site Scripting (20.13.6)

WordPress Plugin LearnPress-WordPress LMS Multiple Vulnerabilities (4.1.7.3.2)

WordPress 4.9.x Denial of Service Vulnerability (4.9 - 4.9.4)

Jenkins Incorrect Authorization Vulnerability (CVE-2018-1999004)

Severity

Medium

Classification

CVE-2013-1861 CWE-119

Tags

Missing Update Known Vulnerabilities