PingCAP TiDB is vulnerable to Buffer Overflow. The vulnerability is due to reading a string from a column while the offset field in the column is not initialized, which results in a buffer overflow that could lead to database crashes and denial of service attacks.