MariaDB Server before 10.3.34 thru 10.9.3 is vulnerable to Denial of Service. It is possible for function spider_db_mbase::print_warnings to dereference a null pointer.
CPE | Name | Operator | Version |
---|---|---|---|
mysql-client | lt | 10.9.3 | |
mysql-client | ge | 10.3.34 |
github.com/MariaDB/server/commit/be0a46b3d52b58956fd0d47d040b9f4514406954
lists.debian.org/debian-lts-announce/2023/06/msg00005.html
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O22PO3Q6TRSNJI2A2WTJH3VVCHEKBF6C/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SUQ33SPQCZQD63TWAM3XKFNVNFRGPFYU/
security.netapp.com/advisory/ntap-20230309-0009/