9 matches found
BIT-MYSQL-CLIENT-2022-38791
In MariaDB before 10.9.2, compresswrite in extra/mariabackup/dscompress.cc does not release datamutex upon a stream write failure, which allows local users to trigger a deadlock...
BIT-MARIADB-2022-38791
In MariaDB before 10.9.2, compresswrite in extra/mariabackup/dscompress.cc does not release datamutex upon a stream write failure, which allows local users to trigger a deadlock...
mariadb: improper locking due to the unreleased lock in extra/mariabackup/ds_compress.cc
MariaDB Server before 10.7 is vulnerable to Denial of Service. In extra/mariabackup/dscompress.cc, when an error occurs i.e., going to the err label while executing the method createworkerthreads, the held lock thd-ctrlmutex is not released correctly, which allows local users to trigger a denial ...
SUSE CVE-2022-31622
MariaDB Server before 10.7 is vulnerable to Denial of Service. In extra/mariabackup/dscompress.cc, when an error occurs pthreadcreate returns a nonzero value while executing the method createworkerthreads, the held lock is not released correctly, which allows local users to trigger a denial of...
mariadb: improper locking due to the unreleased lock in extra/mariabackup/ds_compress.cc
MariaDB Server before 10.7 is vulnerable to Denial of Service. In extra/mariabackup/dscompress.cc, when an error occurs pthreadcreate returns a nonzero value while executing the method createworkerthreads, the held lock is not released correctly, which allows local users to trigger a denial of...
Design/Logic Flaw
In MariaDB before 10.9.2, compresswrite in extra/mariabackup/dscompress.cc does not release datamutex upon a stream write failure, which allows local users to trigger a deadlock...
CVE-2022-38791
In MariaDB before 10.9.2, compresswrite in extra/mariabackup/dscompress.cc does not release datamutex upon a stream write failure, which allows local users to trigger a deadlock...
CVE-2022-38791
CVE-2022-38791 affects MariaDB pre-10.9.2. The issue is in compress_write (extra/mariabackup/ds_compress.cc) where data_mutex is not released on a stream write failure, enabling a local user to trigger a deadlock. Public advisories (Astra Linux, AlmaLinux, Fedora references) confirm the same desc...
Denial Of Service (DoS)
mariadb is vulnerable to denial of service. The vulnerability exists in dscompress.cc because of the deadlock via the component which allows an attacker to cause an application crash...