Описание
MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used.
A use-after-free vulnerability was found in MariaDB. This flaw allows attackers to trigger a convert_const_to_int() use-after-free when the BIGINT data type is used, resulting in a denial of service.
Меры по смягчению последствий
Mitigation for this issue is not available, please update the affected package.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 7 | mariadb | Out of support scope | ||
| Red Hat OpenStack Platform 13 (Queens) | mariadb | Out of support scope | ||
| Red Hat Enterprise Linux 8 | mariadb | Fixed | RHSA-2022:5826 | 02.08.2022 |
| Red Hat Enterprise Linux 8 | mariadb | Fixed | RHSA-2022:6443 | 13.09.2022 |
| Red Hat Enterprise Linux 9 | mariadb | Fixed | RHSA-2022:5948 | 09.08.2022 |
| Red Hat Software Collections for Red Hat Enterprise Linux 7 | rh-mariadb105-mariadb | Fixed | RHSA-2022:5759 | 28.07.2022 |
| Red Hat Software Collections for Red Hat Enterprise Linux 7 | rh-mariadb103-mariadb | Fixed | RHSA-2022:6306 | 01.09.2022 |
Показывать по
Дополнительная информация
Статус:
6.5 Medium
CVSS3
Связанные уязвимости
MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used.
MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used.
MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_ ...
MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used.
6.5 Medium
CVSS3