CVE-2009-4019

Name of the Vulnerable Software and Affected Versions MySQL versions 5.0.x through 5.0.87 MySQL versions 5.1.x through 5.1.40

Description The issue allows remote authenticated users to cause a denial of service, resulting in a daemon crash, by executing crafted statements. This is due to improper error handling during the execution of certain SELECT statements with subqueries and the failure to preserve certain null value flags during the execution of statements that use the GeomFromWKB function.

Recommendations For MySQL versions 5.0.x through 5.0.87, update to version 5.0.88 or later. For MySQL versions 5.1.x through 5.1.40, update to version 5.1.41 or later.