CVE-2022-47015

Опубликовано: 20 янв. 2023

Источник: debian

EPSS Низкий

Описание

MariaDB Server before 10.3.34 thru 10.9.3 is vulnerable to Denial of Service. It is possible for function spider_db_mbase::print_warnings to dereference a null pointer.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
mariadb	fixed	1:10.11.3-1~exp1	experimental	package
mariadb	fixed	1:10.11.3-1		package
mariadb-10.6	removed			package
mariadb-10.5	removed			package
mariadb-10.5	fixed	1:10.5.20-0+deb11u1	bullseye	package
mariadb-10.3	removed			package

Примечания

https://jira.mariadb.org/browse/MDEV-29644
Fixed in MariaDB: 10.3.39, 10.4.29, 10.5.20, 10.6.13, 10.8.8, 10.9.6, 10.10.4, 10.11.3
MariaDB commit: https://github.com/MariaDB/server/commit/9b32e4b192303421ca26625153ae1190429e307f (mariadb-10.3.39)

EPSS

Процентиль: 29%

0.00102

Низкий

Связанные уязвимости

CVE-2022-47015

CVSS3: 6.5

ubuntu

больше 2 лет назад

MariaDB Server before 10.3.34 thru 10.9.3 is vulnerable to Denial of Service. It is possible for function spider_db_mbase::print_warnings to dereference a null pointer.

CVE-2022-47015

CVSS3: 6.5

redhat

больше 2 лет назад

MariaDB Server before 10.3.34 thru 10.9.3 is vulnerable to Denial of Service. It is possible for function spider_db_mbase::print_warnings to dereference a null pointer.

CVE-2022-47015

CVSS3: 6.5

nvd

больше 2 лет назад

MariaDB Server before 10.3.34 thru 10.9.3 is vulnerable to Denial of Service. It is possible for function spider_db_mbase::print_warnings to dereference a null pointer.

SUSE-SU-2023:3712-1

suse-cvrf

больше 1 года назад

Security update for mariadb

SUSE-SU-2023:2991-1

suse-cvrf

почти 2 года назад

Security update for mariadb

EPSS

Процентиль: 29%

0.00102

Низкий