Description
Signed integer vulnerability in the COM_TABLE_DUMP package for MySQL 3.23.x before 3.23.54 allows remote attackers to cause a denial of service (crash or hang) in mysqld by causing large negative integers to be provided to a memcpy call.
Remediation
References
Related Vulnerabilities
Hesk Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3743)
WordPress Plugin InfiniteWP Client PHP Object Injection (1.6.0)
WordPress 'paged' Parameter SQL Injection Vulnerability (2.0.2 - 2.0.5)
Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2020-14384)