CVE-2022-27456

Опубликовано: 09 нояб. 2020

Источник: redhat

CVSS3: 7.5

Описание

MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component VDec::VDec at /sql/sql_type.cc.

A flaw was found in the MariaDB Server. It contains a use-after-free in the component, VDec::VDec at /sql/sql_type.cc, affecting availability.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 7	mariadb	Out of support scope
Red Hat OpenStack Platform 13 (Queens)	mariadb	Out of support scope
Red Hat Enterprise Linux 8	mariadb	Fixed	RHSA-2022:5826	02.08.2022
Red Hat Enterprise Linux 8	mariadb	Fixed	RHSA-2022:6443	13.09.2022
Red Hat Enterprise Linux 9	mariadb	Fixed	RHSA-2022:5948	09.08.2022
Red Hat Software Collections for Red Hat Enterprise Linux 7	rh-mariadb105-mariadb	Fixed	RHSA-2022:5759	28.07.2022
Red Hat Software Collections for Red Hat Enterprise Linux 7	rh-mariadb103-mariadb	Fixed	RHSA-2022:6306	01.09.2022

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-617

https://bugzilla.redhat.com/show_bug.cgi?id=2075697mariadb: assertion failure in VDec::VDec at /sql/sql_type.cc

7.5 High

CVSS3

Связанные уязвимости

CVE-2022-27456

CVSS3: 7.5

ubuntu

около 3 лет назад

MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component VDec::VDec at /sql/sql_type.cc.

CVE-2022-27456

CVSS3: 7.5

nvd

около 3 лет назад

MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component VDec::VDec at /sql/sql_type.cc.

CVE-2022-27456

CVSS3: 7.5

msrc

около 3 лет назад

Описание отсутствует

CVE-2022-27456

CVSS3: 7.5

debian

около 3 лет назад

MariaDB Server v10.6.3 and below was discovered to contain an use-afte ...

GHSA-f8w6-xxmj-9fw4

CVSS3: 7.5

github

около 3 лет назад

MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component VDec::VDec at /sql/sql_type.cc.

7.5 High

CVSS3