Fluid Attacks Database

Description

MariaDB v10.4 to v10.8 was discovered to contain a segmentation fault via the component Item_field::fix_outer_field.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	mariadb-10.5	=1:10.5.11-1 \|\| =1:10.5.12-0+deb11u1 \|\| =1:10.5.12-1 \|\| =1:10.5.13-0+deb11u1 \|\| =1:10.5.15-0+deb11u1 \|\| >=0 <1:10.5.18-0+deb11u1	1:10.5.18-0+deb11u1
rpm rhel8	mariadb	<3:10.5.16-2.module+el8.6.0+15639+405b7427	3:10.5.16-2.module+el8.6.0+15639+405b7427
rpm rhel9	galera	<0:26.4.11-1.el9_0	0:26.4.11-1.el9_0
rpm rhel9	mariadb	<3:10.5.16-2.el9_0	3:10.5.16-2.el9_0
rpm rhel9	mysql-selinux	<0:1.0.5-1.el9_0	0:1.0.5-1.el9_0

Aliases

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.