CVE-2016-1251
- Source
- https://cve.org/CVERecord?id=CVE-2016-1251
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-1251.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2016-1251
- Downstream
- Related
- Published
- 2016-11-29T20:59:00.170Z
- Modified
- 2026-04-16T01:42:24.234019641Z
- Severity
-
- 8.1 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
There is a vulnerability of type use-after-free affecting DBD::mysql (aka DBD-mysql or the Database Interface (DBI) MySQL driver for Perl) 3.x and 4.x before 4.041 when used with mysqlserverprepare=1.
- Database specific
{ "unresolved_ranges": [ { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:3.0000_0:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "3.0000_0" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:3.0001_1:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "3.0001_1" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:3.0001_2:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "3.0001_2" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:3.0001_3:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "3.0001_3" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:3.0002_1:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "3.0002_1" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:3.0002_2:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "3.0002_2" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:3.0002_3:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "3.0002_3" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:3.0002_4:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "3.0002_4" } ] }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "3.0002_5" } ], "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:3.0002_5:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:3.0003_1:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "3.0003_1" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:3.0004_1:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "3.0004_1" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:3.0005:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "3.0005" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:3.0005_1:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "3.0005_1" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:3.0007_2:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "3.0007_2" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:3.0008_1:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "3.0008_1" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:3.0009_1:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "3.0009_1" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.001:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.001" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.002:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.002" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.003:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.003" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.004:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.004" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.005:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.005" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.006:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.006" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.007:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.007" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.008:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.008" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.009:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.009" } ] }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.00" } ], "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.00:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.010:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.010" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.011:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.011" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.016:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.016" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.017:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.017" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.018:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.018" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.023:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.023" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.024:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.024" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.025:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.025" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.026:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.026" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.027:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.027" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.028:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.028" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.029:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.029" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.039:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "4.039" } ] } ] }- References
-
- http://www.openwall.com/lists/oss-security/2016/11/28/2
- http://www.securityfocus.com/bid/94573
- https://security.gentoo.org/glsa/201701-51
- https://tracker.debian.org/news/819888
- https://anonscm.debian.org/cgit/pkg-perl/packages/libdbd-mysql-perl.git/commit/?id=a8b97e4713391b1f8beffbfddac483c276feaff1
- https://github.com/perl5-dbi/DBD-mysql/commit/3619c170461a3107a258d1fd2d00ed4832adb1b1
Affected packages
Git / github.com/perl5-dbi/dbd-mysql
Affected ranges
- Type
- GIT
- Repo
- https://github.com/perl5-dbi/dbd-mysql
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affected
- Database specific
{ "source": "CPE_FIELD", "cpe": [ "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.012:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.013:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.014:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.015:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.019:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.020:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.021:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.022:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.030_01:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.030_02:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.031:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.032:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.032_01:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.032_02:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.032_03:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.033:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.033_01:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.033_02:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.033_03:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.034:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.035:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.035_01:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.035_02:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.035_03:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.036:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.037:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.037_01:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.038:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.038_01:*:*:*:*:*:*:*", "cpe:2.3:a:dbd-mysql_project:dbd-mysql:4.040:*:*:*:*:*:*:*" ], "extracted_events": [ { "introduced": "0" }, { "last_affected": "4.012" }, { "last_affected": "4.013" }, { "last_affected": "4.014" }, { "last_affected": "4.015" }, { "last_affected": "4.019" }, { "last_affected": "4.020" }, { "last_affected": "4.021" }, { "last_affected": "4.022" }, { "last_affected": "4.030_01" }, { "last_affected": "4.030_02" }, { "last_affected": "4.031" }, { "last_affected": "4.032" }, { "last_affected": "4.032_01" }, { "last_affected": "4.032_02" }, { "last_affected": "4.032_03" }, { "last_affected": "4.033" }, { "last_affected": "4.033_01" }, { "last_affected": "4.033_02" }, { "last_affected": "4.033_03" }, { "last_affected": "4.034" }, { "last_affected": "4.035" }, { "last_affected": "4.035_01" }, { "last_affected": "4.035_02" }, { "last_affected": "4.035_03" }, { "last_affected": "4.036" }, { "last_affected": "4.037" }, { "last_affected": "4.037_01" }, { "last_affected": "4.038" }, { "last_affected": "4.038_01" }, { "last_affected": "4.040" } ] }