MySQL 5.6.x < 5.6.20 client.c mysql_prune_stmt_list() Function DoS (April 2017 CPU)
Medium Nessus Plugin ID 99511
The remote database server is affected by a denial of service vulnerability.
The version of MySQL running on the remote host is 5.6.x prior to 5.6.20. It is, therefore, affected by a use-after-free error in the mysql_prune_stmt_list() function in client.c, that allows an authenticated, remote attacker to cause a denial of service condition. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.