CVE-2016-1251

There is a vulnerability of type use-after-free affecting DBD::mysql (aka DBD-mysql or the Database Interface (DBI) MySQL driver for Perl) 3.x and 4.x before 4.041 when used with mysql_server_prepare=1.

Published: Nov 29, 2016
Updated: Nov 9, 2025
CVE: CVE-2016-1251
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-416

Affected Software
References

Software	From	Fixed in
dbd-mysql_project / dbd-mysql	4.011	4.011.x
dbd-mysql_project / dbd-mysql	4.030_01	4.030_01.x
dbd-mysql_project / dbd-mysql	4.029	4.029.x
dbd-mysql_project / dbd-mysql	3.0002_2	3.0002_2.x
dbd-mysql_project / dbd-mysql	4.017	4.017.x
dbd-mysql_project / dbd-mysql	3.0002_4	3.0002_4.x
dbd-mysql_project / dbd-mysql	4.024	4.024.x
dbd-mysql_project / dbd-mysql	3.0004_1	3.0004_1.x
dbd-mysql_project / dbd-mysql	4.035_03	4.035_03.x
dbd-mysql_project / dbd-mysql	4.027	4.027.x
dbd-mysql_project / dbd-mysql	4.014	4.014.x
dbd-mysql_project / dbd-mysql	4.032_03	4.032_03.x
dbd-mysql_project / dbd-mysql	4.006	4.006.x
dbd-mysql_project / dbd-mysql	3.0005_1	3.0005_1.x
dbd-mysql_project / dbd-mysql	4.038	4.038.x
dbd-mysql_project / dbd-mysql	4.034	4.034.x
dbd-mysql_project / dbd-mysql	4.00	4.00.x
dbd-mysql_project / dbd-mysql	4.032_01	4.032_01.x
dbd-mysql_project / dbd-mysql	4.033_02	4.033_02.x
dbd-mysql_project / dbd-mysql	4.035	4.035.x
dbd-mysql_project / dbd-mysql	4.039	4.039.x
dbd-mysql_project / dbd-mysql	4.030_02	4.030_02.x
dbd-mysql_project / dbd-mysql	4.038_01	4.038_01.x
dbd-mysql_project / dbd-mysql	3.0008_1	3.0008_1.x
dbd-mysql_project / dbd-mysql	4.019	4.019.x
dbd-mysql_project / dbd-mysql	3.0002_5	3.0002_5.x
dbd-mysql_project / dbd-mysql	4.003	4.003.x
dbd-mysql_project / dbd-mysql	4.005	4.005.x
dbd-mysql_project / dbd-mysql	4.036	4.036.x
dbd-mysql_project / dbd-mysql	3.0002_1	3.0002_1.x
dbd-mysql_project / dbd-mysql	4.033	4.033.x
dbd-mysql_project / dbd-mysql	4.026	4.026.x
dbd-mysql_project / dbd-mysql	4.033_03	4.033_03.x
dbd-mysql_project / dbd-mysql	4.012	4.012.x
dbd-mysql_project / dbd-mysql	3.0005	3.0005.x
dbd-mysql_project / dbd-mysql	3.0003_1	3.0003_1.x
dbd-mysql_project / dbd-mysql	3.0007_2	3.0007_2.x
dbd-mysql_project / dbd-mysql	4.037_01	4.037_01.x
dbd-mysql_project / dbd-mysql	4.004	4.004.x
dbd-mysql_project / dbd-mysql	4.001	4.001.x
dbd-mysql_project / dbd-mysql	4.037	4.037.x
dbd-mysql_project / dbd-mysql	4.021	4.021.x
dbd-mysql_project / dbd-mysql	4.035_01	4.035_01.x
dbd-mysql_project / dbd-mysql	4.031	4.031.x
dbd-mysql_project / dbd-mysql	3.0001_1	3.0001_1.x
dbd-mysql_project / dbd-mysql	4.022	4.022.x
dbd-mysql_project / dbd-mysql	4.010	4.010.x
dbd-mysql_project / dbd-mysql	4.028	4.028.x
dbd-mysql_project / dbd-mysql	4.009	4.009.x
dbd-mysql_project / dbd-mysql	4.035_02	4.035_02.x
dbd-mysql_project / dbd-mysql	4.040	4.040.x
dbd-mysql_project / dbd-mysql	4.008	4.008.x
dbd-mysql_project / dbd-mysql	4.015	4.015.x
dbd-mysql_project / dbd-mysql	3.0001_3	3.0001_3.x
dbd-mysql_project / dbd-mysql	3.0000_0	3.0000_0.x
dbd-mysql_project / dbd-mysql	4.007	4.007.x
dbd-mysql_project / dbd-mysql	3.0001_2	3.0001_2.x
dbd-mysql_project / dbd-mysql	4.018	4.018.x
dbd-mysql_project / dbd-mysql	4.032_02	4.032_02.x
dbd-mysql_project / dbd-mysql	4.023	4.023.x
dbd-mysql_project / dbd-mysql	4.016	4.016.x
dbd-mysql_project / dbd-mysql	4.033_01	4.033_01.x
dbd-mysql_project / dbd-mysql	4.013	4.013.x
dbd-mysql_project / dbd-mysql	3.0002_3	3.0002_3.x
dbd-mysql_project / dbd-mysql	4.032	4.032.x
dbd-mysql_project / dbd-mysql	3.0009_1	3.0009_1.x
dbd-mysql_project / dbd-mysql	4.020	4.020.x
dbd-mysql_project / dbd-mysql	4.002	4.002.x
dbd-mysql_project / dbd-mysql	4.025	4.025.x

Vulnerability Database

318,389

CVE-2016-1251

Deep Security Visibility Without the Complexity