CVE-2007-5925

The convert_search_mode_to_innobase function in ha_innodb.cc in the InnoDB engine in MySQL 5.1.23-BK and earlier allows remote authenticated users to cause a denial of service (database crash) via a certain CONTAINS operation on an indexed column, which triggers an assertion error.

🔗 References (56)

• cve@mitrehttp://bugs.gentoo.org/show_bug.cgi?id=198988
• cve@mitrehttp://bugs.mysql.com/bug.php?id=32125
• cve@mitrehttp://lists.grok.org.uk/pipermail/full-disclosure/2007-November/067350.html
• cve@mitrehttp://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html
• cve@mitrehttp://secunia.com/advisories/27568
• cve@mitrehttp://secunia.com/advisories/27649
• cve@mitrehttp://secunia.com/advisories/27823
• cve@mitrehttp://secunia.com/advisories/28025
• cve@mitrehttp://secunia.com/advisories/28040
• cve@mitrehttp://secunia.com/advisories/28099
• cve@mitrehttp://secunia.com/advisories/28108
• cve@mitrehttp://secunia.com/advisories/28128
• cve@mitrehttp://secunia.com/advisories/28838
• cve@mitrehttp://security.gentoo.org/glsa/glsa-200711-25.xml
• cve@mitrehttp://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.428959