Multiple vulnerabilities has been found and corrected in mysql: The server failed to check the table name argument of a COM_FIELD_LIST command packet for validity and compliance to acceptable table name standards. This could be exploited to bypass almost all forms of checks for privileges and table-level grants by providing a specially crafted table name argument to COM_FIELD_LIST . The server could be tricked into reading packets indefinitely if it received a packet larger than the maximum size of one packet CVE-2010-1849(CVE-2010-1850