So I was hoping Oracle would assign a CVE for this publicly since it
also affects MySQL but it's been a week and we haven't seen anything
from them anywhere (public or private).
So for the MySQL/MariaDB geometry issues:
https://mariadb.atlassian.net/browse/MDEV-4252
http://bugs.mysql.com/bug.php?id=68591
http://lists.askmonty.org/pipermail/commits/2013-March/004371.html
https://bugzilla.redhat.com/show_bug.cgi?id=919247
So we've assigned CVE-2013-1861 for this issue.
I apologize in advance if Oracle has assigned a CVE for this issue,
but they haven't communicated it to anyone, so in future this problem
can easily be avoided by simply posting the assigned CVE to
OSS-Security and everyone will know.
- --
Kurt Seifried Red Hat Security Response Team (SRT)
PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993