Medium: mariadb105

Issue Overview: MariaDB Server 10.4 before 10.4.33, 10.5 before 10.5.24, 10.6 before 10.6.17, 10.7 through 10.11 before 10.11.7, 11.0 before 11.0.5, and 11.1 before 11.1.4 calls fixfieldsifneeded under mysqlderivedprepare when derived is not yet prepared, leading to a findfieldintable crash...

CVE-2024-20981 affecting package mysql for versions less than 8.0.36-1

CVE-2024-20981 affecting package mysql for versions less than 8.0.36-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-20969 affecting package mysql for versions less than 8.0.36-1

CVE-2024-20969 affecting package mysql for versions less than 8.0.36-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-20973 affecting package mysql for versions less than 8.0.36-1

CVE-2024-20973 affecting package mysql for versions less than 8.0.36-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-20985 affecting package mysql for versions less than 8.0.36-1

CVE-2024-20985 affecting package mysql for versions less than 8.0.36-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-20971 affecting package mysql for versions less than 8.0.36-1

CVE-2024-20971 affecting package mysql for versions less than 8.0.36-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-20965 affecting package mysql for versions less than 8.0.36-1

CVE-2024-20965 affecting package mysql for versions less than 8.0.36-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-20963 affecting package mysql for versions less than 8.0.36-1

CVE-2024-20963 affecting package mysql for versions less than 8.0.36-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-20961 affecting package mysql for versions less than 8.0.36-1

CVE-2024-20961 affecting package mysql for versions less than 8.0.36-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-21165

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Pluggable Auth. Supported versions that are affected are 8.0.37 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successfu...

AZL-48315 CVE-2024-21165 affecting package mysql for versions less than 8.0.40-1

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Pluggable Auth. Supported versions that are affected are 8.0.37 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successfu...

AZL-50529 CVE-2024-21160 affecting package mysql for versions less than 8.0.40-1

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.36 and prior and 8.3.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

AZL-50547 CVE-2024-21157 affecting package mysql for versions less than 8.0.40-1

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.36 and prior and 8.4.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

AZL-50526 CVE-2024-21125 affecting package mysql for versions less than 8.0.40-1

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: FTS. Supported versions that are affected are 8.0.37 and prior and 8.4.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

AZL-50477 CVE-2024-20996 affecting package mysql for versions less than 8.0.40-1

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.37 and prior and 8.4.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

UBUNTU-CVE-2024-21134

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Connection Handling. Supported versions that are affected are 8.0.37 and prior and 8.4.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise...

UBUNTU-CVE-2024-20996

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.37 and prior and 8.4.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

Oracle MySQL 安全漏洞

Oracle MySQL Server is a relational database from Oracle Corporation. A security vulnerability exists in Oracle MySQL Server, which can be exploited by attackers to cause MySQL Server to hang without authorization or crash frequently and repeatedly full DOS...

Oracle MySQL 安全漏洞

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in Oracle MySQL's MySQL Server. An attacker can exploit this vulnerability to cause MySQL Server to hang or crash...

CVE-2024-34919

An arbitrary file upload vulnerability in the component \modstudent\controller.php of Pisay Online E-Learning System using PHP/MySQL v1.0 allows attackers to execute arbitrary code via uploading a crafted file...