CVE-2009-2942

EPSS 0.80%

mysql-ocaml - missing escape function

Published: 10/22/2009Modified: 4/28/2026

Description

The mysql-ocaml bindings 1.0.4 for MySQL do not properly support the mysql_real_escape_string function, which might allow remote attackers to leverage escaping issues involving multibyte character encodings.

Affected packages (2)

Debian/mysql-ocamlfrom 0, < 1.0.4-7
Debian/mysql-ocamlfrom 0, < 1.0.4-2+etch1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-2942