Name of the Vulnerable Software and Affected Versions mysql versions prior to 2.14.0

Description The issue concerns the exposure of uninitialized memory over the network when a number is used as a password in affected mysql package versions. This occurs because the package allocates and sends uninitialized memory when such a password is provided. The vulnerability specifically affects mysql running on Node.js versions below 6.0.0, due to changes in newer Node.js versions.

Recommendations Update to version 2.14.0 or later.