26 matches found
EUVD-2022-31960
Malicious code in bioql PyPI...
EUVD-2022-49793
Malicious code in bioql PyPI...
EUVD-2022-53073
Malicious code in bioql PyPI...
EUVD-2022-31950
Malicious code in bioql PyPI...
EUVD-2023-59686
Malicious code in bioql PyPI...
BIT-MARIADB-MIN-2023-52968
MariaDB Server 10.4 before 10.4.33, 10.5 before 10.5.24, 10.6 before 10.6.17, 10.7 through 10.11 before 10.11.7, 11.0 before 11.0.5, and 11.1 before 11.1.4 calls fixfieldsifneeded under mysqlderivedprepare when derived is not yet prepared, leading to a findfieldintable crash...
BIT-MARIADB-MIN-2022-31623
MariaDB Server before 10.7 is vulnerable to Denial of Service. In extra/mariabackup/dscompress.cc, when an error occurs i.e., going to the err label while executing the method createworkerthreads, the held lock thd-ctrlmutex is not released correctly, which allows local users to trigger a denial ...
BIT-MARIADB-MIN-2022-27456
MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component VDec::VDec at /sql/sqltype.cc...
BIT-MARIADB-MIN-2022-27384
An issue in the component Itemsubselect::initexprcachetracker of MariaDB Server v10.6 and below was discovered to allow attackers to cause a Denial of Service DoS via specially crafted SQL statements...
BIT-MARIADB-MIN-2022-27383
MariaDB Server v10.6 and below was discovered to contain an use-after-free in the component mystrcasecmp8bit, which is exploited via specially crafted SQL statements...
BIT-MARIADB-MIN-2022-27377
MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component Itemfuncin::cleanup, which is exploited via specially crafted SQL statements...
BIT-MARIADB-MIN-2022-27376
MariaDB Server v10.6.5 and below was discovered to contain an use-after-free in the component Itemargs::walkarg, which is exploited via specially crafted SQL statements...
BIT-MYSQL-CLIENT-2023-52968
MariaDB Server 10.4 before 10.4.33, 10.5 before 10.5.24, 10.6 before 10.6.17, 10.7 through 10.11 before 10.11.7, 11.0 before 11.0.5, and 11.1 before 11.1.4 calls fixfieldsifneeded under mysqlderivedprepare when derived is not yet prepared, leading to a findfieldintable crash...
CVE-2023-52971
MariaDB Server 10.10 through 10.11. and 11.0 through 11.4. crashes in JOIN::fixallsplittingsinplan...
CVE-2023-52971
MariaDB Server 10.10 through 10.11. and 11.0 through 11.4. crashes in JOIN::fixallsplittingsinplan...
CVE-2023-52968
MariaDB Server 10.4 before 10.4.33, 10.5 before 10.5.24, 10.6 before 10.6.17, 10.7 through 10.11 before 10.11.7, 11.0 before 11.0.5, and 11.1 before 11.1.4 calls fixfieldsifneeded under mysqlderivedprepare when derived is not yet prepared, leading to a findfieldintable crash...
CBL Mariner 2.0 Security Update: mariadb (CVE-2022-27382)
The version of mariadb installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-27382 advisory. - MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component...
PT-2022-6751 · Mariadb +9 · Mariadb Server +9
Name of the Vulnerable Software and Affected Versions: MariaDB Server versions 10.3.34 through 10.9.3 Description: The issue is related to the function spider db mbase::print warnings in MariaDB, which can dereference a null pointer, leading to a denial of service. This can be exploited by a remo...
PT-2022-6937 · Mariadb +9 · Mariadb Server +9
Name of the Vulnerable Software and Affected Versions: MariaDB Server versions 10.9 and below Description: The issue is related to a segmentation fault in the sql/item cmpfunc.h component of the MariaDB Server. It is associated with insufficient use of the assert function. Exploitation of this...
PT-2021-6913 · Mariadb +5 · Mariadb Server +5
Name of the Vulnerable Software and Affected Versions: MariaDB Server versions 10.7 and below Description: An issue in the component Used tables and const cache::used tables and const cache join of MariaDB Server was discovered to allow attackers to cause a Denial of Service DoS via specially...