CVE-2023-52969

Опубликовано: 08 мар. 2025

Источник: redhat

CVSS3: 4.9

Описание

MariaDB Server 10.4 through 10.5., 10.6 through 10.6., 10.7 through 10.11., and 11.0 through 11.0. can sometimes crash with an empty backtrace log. This may be related to make_aggr_tables_info and optimize_stage2.

A flaw was found in MariaDB Server. This vulnerability may allow an attacker to cause a crash via an issue related to make_aggr_tables_info and optimize_stage2, resulting in an empty backtrace log.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 10	mariadb10.11	Fix deferred
Red Hat Enterprise Linux 7	mariadb	Not affected
Red Hat Enterprise Linux 8	mariadb:10.11/mariadb	Affected
Red Hat Enterprise Linux 8	mariadb:10.3/mariadb	Not affected
Red Hat Enterprise Linux 8	mariadb:10.5/mariadb	Affected
Red Hat Enterprise Linux 8	mariadb-devel:10.3/mariadb	Not affected
Red Hat Enterprise Linux 9	mariadb	Fix deferred
Red Hat Enterprise Linux 9	mariadb:10.11/mariadb	Fix deferred

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-1038

https://bugzilla.redhat.com/show_bug.cgi?id=2350916mariadb: MariaDB Server Crash Due to Empty Backtrace Log

4.9 Medium

CVSS3

Связанные уязвимости

CVE-2023-52969

CVSS3: 4.9

ubuntu

11 месяцев назад

MariaDB Server 10.4 through 10.5.*, 10.6 through 10.6.*, 10.7 through 10.11.*, and 11.0 through 11.0.* can sometimes crash with an empty backtrace log. This may be related to make_aggr_tables_info and optimize_stage2.