mariadb: crash via window function in expression in ORDER BY

A flaw was found in the MariaDB Server. It contains a segmentation fault via the component, sql/fieldconv.cc, affecting availability...

mariadb: crash via window function in expression in ORDER BY

A flaw was found in the MariaDB Server. It contains a segmentation fault via the component, sql/fieldconv.cc, affecting availability...

mariadb: save_window_function_values triggers an abort during IN subquery

savewindowfunctionvalues in MariaDB before 10.6.3 allows an application crash because of incorrect handling of withwindowfunc=true for a subquery...

mariadb: save_window_function_values triggers an abort during IN subquery

savewindowfunctionvalues in MariaDB before 10.6.3 allows an application crash because of incorrect handling of withwindowfunc=true for a subquery...

mariadb: save_window_function_values triggers an abort during IN subquery

savewindowfunctionvalues in MariaDB before 10.6.3 allows an application crash because of incorrect handling of withwindowfunc=true for a subquery...

mariadb: save_window_function_values triggers an abort during IN subquery

savewindowfunctionvalues in MariaDB before 10.6.3 allows an application crash because of incorrect handling of withwindowfunc=true for a subquery...

mariadb: save_window_function_values triggers an abort during IN subquery

savewindowfunctionvalues in MariaDB before 10.6.3 allows an application crash because of incorrect handling of withwindowfunc=true for a subquery...

MariaDB 10.4.0 < 10.4.20 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.4.20. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.4.20 advisory. - MariaDB before 10.6.2 allows an application crash because of mishandling of a pushdown from a HAVING clause to a WHERE clause...

MariaDB 10.3.0 < 10.3.30 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.3.30. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.3.30 advisory. - MariaDB before 10.6.2 allows an application crash because of mishandling of a pushdown from a HAVING clause to a WHERE clause...

save_window_function_values in MariaDB before 10.6.3 allows an application crash because of incorrect handling of with_window_func=true for a subquery.

...

MariaDB DoS Vulnerability (MDEV-25630) - Windows

MariaDB is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mariadb:mariadb"; if...

AZL-8453 CVE-2021-46658 affecting package mariadb for versions less than 10.6.7-1

savewindowfunctionvalues in MariaDB before 10.6.3 allows an application crash because of incorrect handling of withwindowfunc=true for a subquery...

DEBIAN-CVE-2021-46658

savewindowfunctionvalues in MariaDB before 10.6.3 allows an application crash because of incorrect handling of withwindowfunc=true for a subquery...

MariaDB 资源管理错误漏洞

MariaDB is a free and open source database management system from the MariaDB Mariadb Foundation and a forked version of MySQL with the Maria storage engine. A security vulnerability exists in MariaDB before 10.6.3 that stems from incorrect handling of withwindowfunc=true for the...

Rust rusqlite crate 资源管理错误漏洞

Rust rusqlite crate is an ergonomic wrapper for using SQLite from Rust. it attempts to expose a rust-postgres-like interface. versions 0.25.x prior to 0.25.4 and 0.26.x prior to 0.26.2 of Rust rusqlite crate are vulnerable to security vulnerability, which stems from a resource management error in...

sqlite: NULL pointer dereference in sqlite3ExprCodeTarget()

A NULL pointer dereference flaw was found in SQLite when rewriting select statements for window functions. This flaw allows an attacker who can execute SQL statements, to crash the application, resulting in a denial of service...

Denial Of Service (DoS)

SQLite is vulnerable to denial of service. An attacker is able to cause a denial of service segmentation fault condition via a malicious window-function query due to a mishandling during the AggInfo object's initialization...

DEBIAN-CVE-2020-13871

SQLite 3.32.2 has a use-after-free in resetAccumulator in select.c because the parse tree rewrite for window functions is too late...

CVE-2020-13871

SQLite 3.32.2 has a use-after-free in resetAccumulator in select.c because the parse tree rewrite for window functions is too late...

EulerOS 2.0 SP8 : sqlite (EulerOS-SA-2020-1512)

According to the version of the sqlite packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - SQLite through 3.31.1 allows attackers to cause a denial of service segmentation fault via a malformed window-function query because the AggInfo...