CVE-2015-8949

Name of the Vulnerable Software and Affected Versions DBD::mysql versions prior to 4.033 01 Debian GNU/Linux (affected versions not specified)

Description The issue is related to a use-after-free vulnerability in the my login function, which can be exploited by making a call to mysql errno after my login fails. This could allow a remote attacker to have an unspecified impact.

Recommendations For DBD::mysql versions prior to 4.033 01, update to version 4.033 01 or later to resolve the issue. As a temporary workaround, consider avoiding the use of the my login function until a patch is available. Restrict access to the mysql errno function to minimize the risk of exploitation.