MariaDB — ответвление от системы управления базами данных MySQL, разрабатываемое сообществом под лицензией GNU GPL.

Релизный цикл, информация об уязвимостях

Продукт: MariaDB

Вендор: mariadb

График релизов

Недавние уязвимости MariaDB

Количество 2 149

GHSA-qhvg-j82m-w264

около 4 лет назад

MariaDB before 10.6.2 allows an application crash because of mishandling of a pushdown from a HAVING clause to a WHERE clause.

CVSS3: 5.5

EPSS: Низкий

GHSA-jj99-6883-93g3

около 4 лет назад

MariaDB through 10.5.9 allows an application crash in find_field_in_tables and find_order_in_list via an unused common table expression (CTE).

CVSS3: 5.5

EPSS: Низкий

GHSA-wrw9-g9r9-p9h2

около 4 лет назад

MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used.

CVSS3: 7.5

EPSS: Низкий

GHSA-h8g7-9rx9-625q

около 4 лет назад

MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements that improperly interact with storage-engine resource limitations for temporary data structures.

CVSS3: 5.5

EPSS: Низкий

CVE-2021-46669

около 4 лет назад

MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used.

CVSS3: 7.5

EPSS: Низкий

CVE-2021-46669

около 4 лет назад

MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_ ...

CVSS3: 7.5

EPSS: Низкий

CVE-2021-46668

около 4 лет назад

MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements that improperly interact with storage-engine resource limitations for temporary data structures.

CVSS3: 5.5

EPSS: Низкий

CVE-2021-46668

около 4 лет назад

MariaDB through 10.5.9 allows an application crash via certain long SE ...

CVSS3: 5.5

EPSS: Низкий

CVE-2021-46667

около 4 лет назад

MariaDB before 10.6.5 has a sql_lex.cc integer overflow, leading to an application crash.

CVSS3: 5.5

EPSS: Низкий

CVE-2021-46667

около 4 лет назад

MariaDB before 10.6.5 has a sql_lex.cc integer overflow, leading to an ...

CVSS3: 5.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
GHSA-qhvg-j82m-w264 MariaDB before 10.6.2 allows an application crash because of mishandling of a pushdown from a HAVING clause to a WHERE clause.	CVSS3: 5.5	0% Низкий	около 4 лет назад
GHSA-jj99-6883-93g3 MariaDB through 10.5.9 allows an application crash in find_field_in_tables and find_order_in_list via an unused common table expression (CTE).	CVSS3: 5.5	0% Низкий	около 4 лет назад
GHSA-wrw9-g9r9-p9h2 MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used.	CVSS3: 7.5	1% Низкий	около 4 лет назад
GHSA-h8g7-9rx9-625q MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements that improperly interact with storage-engine resource limitations for temporary data structures.	CVSS3: 5.5	0% Низкий	около 4 лет назад
CVE-2021-46669 MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used.	CVSS3: 7.5	1% Низкий	около 4 лет назад
CVE-2021-46669 MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_ ...	CVSS3: 7.5	1% Низкий	около 4 лет назад
CVE-2021-46668 MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements that improperly interact with storage-engine resource limitations for temporary data structures.	CVSS3: 5.5	0% Низкий	около 4 лет назад
CVE-2021-46668 MariaDB through 10.5.9 allows an application crash via certain long SE ...	CVSS3: 5.5	0% Низкий	около 4 лет назад
CVE-2021-46667 MariaDB before 10.6.5 has a sql_lex.cc integer overflow, leading to an application crash.	CVSS3: 5.5	0% Низкий	около 4 лет назад
CVE-2021-46667 MariaDB before 10.6.5 has a sql_lex.cc integer overflow, leading to an ...	CVSS3: 5.5	0% Низкий	около 4 лет назад

Уязвимостей на страницу