Search CVE reports

31 – 40 of 263 results

Detailed view

Sort by:

CVE-2022-32081

Medium priority

Some fixes available 3 of 6

MariaDB v10.4 to v10.7 was discovered to contain an use-after-poison in prepare_inplace_add_virtual at /storage/innobase/handler/handler0alter.cc.

6 affected packages

mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-10.6, mariadb-5.5

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mariadb-10.0	Not in release	Not in release	Not in release	Not in release	Needs evaluation
mariadb-10.1	Not in release	Not in release	Not in release	Needs evaluation	Not in release
mariadb-10.3	Not in release	Not in release	Fixed	Not in release	Not in release
mariadb-10.5	Not in release	Not in release	Not in release	Not in release	Not in release
mariadb-10.6	Not in release	Fixed	Not in release	Not in release	Not in release
mariadb-5.5	Not in release	Not in release	Not in release	Not in release	Not in release

CVE-2022-31624

Medium priority

Some fixes available 1 of 6

MariaDB Server before 10.7 is vulnerable to Denial of Service. While executing the plugin/server_audit/server_audit.c method log_statement_ex, the held lock lock_bigbuffer is not released correctly, which allows local users to...

6 affected packages

mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-10.6, mariadb-5.5

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mariadb-10.0	—	—	—	—	Needs evaluation
mariadb-10.1	—	—	—	Needs evaluation	—
mariadb-10.3	—	—	Fixed	—	—
mariadb-10.5	—	—	—	—	—
mariadb-10.6	Not in release	Not affected	—	—	—
mariadb-5.5	—	—	—	—	—

CVE-2022-31623

Medium priority

Ignored

** DISPUTED ** MariaDB Server before 10.7 is vulnerable to Denial of Service. In extra/mariabackup/ds_compress.cc, when an error occurs (i.e., going to the err label) while executing the method create_worker_threads, the held lock...

6 affected packages

mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-10.6, mariadb-5.5

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mariadb-10.0	—	—	—	—	Not affected
mariadb-10.1	—	—	—	Not affected	—
mariadb-10.3	—	—	Not affected	—	—
mariadb-10.5	—	—	—	—	—
mariadb-10.6	Not in release	Not affected	—	—	—
mariadb-5.5	—	—	—	—	—

CVE-2022-31622

Medium priority

Ignored

** DISPUTED ** MariaDB Server before 10.7 is vulnerable to Denial of Service. In extra/mariabackup/ds_compress.cc, when an error occurs (pthread_create returns a nonzero value) while executing the method create_worker_threads, the...

6 affected packages

mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-10.6, mariadb-5.5

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mariadb-10.0	—	—	—	—	Not affected
mariadb-10.1	—	—	—	Not affected	—
mariadb-10.3	—	—	Not affected	—	—
mariadb-10.5	—	—	—	—	—
mariadb-10.6	Not in release	Not affected	—	—	—
mariadb-5.5	—	—	—	—	—

CVE-2022-31621

Medium priority

Ignored

** DISPUTED ** MariaDB Server before 10.7 is vulnerable to Denial of Service. In extra/mariabackup/ds_xbstream.cc, when an error occurs (stream_ctxt->dest_file == NULL) while executing the method xbstream_open, the held lock is...

6 affected packages

mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-10.6, mariadb-5.5

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mariadb-10.0	—	—	—	—	Not affected
mariadb-10.1	—	—	—	Not affected	—
mariadb-10.3	—	—	Not affected	—	—
mariadb-10.5	—	—	—	—	—
mariadb-10.6	Not in release	Not affected	—	—	—
mariadb-5.5	—	—	—	—	—

CVE-2022-21490

Medium priority

Needs evaluation

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.35 and prior, 7.5.25 and prior, 7.6.21 and prior and 8.0.28 and prior. Difficult to exploit...

13 affected packages