CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 1CVE-2022-27457 – mariadb: incorrect key in "dup value" error after long unique
https://notcve.org/view.php?id=CVE-2022-27457
14 Apr 2022 — MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component my_mb_wc_latin1 at /strings/ctype-latin1.c. Se ha detectado que MariaDB Server versiones v10.6.3 y anteriores, contienen un uso de memoria previamente liberada en el componente my_mb_wc_latin1 en /strings/ctype-latin1.c A flaw was found in the MariaDB Server. It contains a use-after-free in the component, my_mb_wc_latin1 at /strings/ctype-latin1.c, affecting availability. Several security issues were discovered in ... • https://jira.mariadb.org/browse/MDEV-28098 • CWE-416: Use After Free •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 1CVE-2022-27455 – mariadb: use-after-free when WHERE has subquery with an outer reference in HAVING
https://notcve.org/view.php?id=CVE-2022-27455
14 Apr 2022 — MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component my_wildcmp_8bit_impl at /strings/ctype-simple.c. Se ha detectado que MariaDB Server versiones v10.6.3 y anteriores, contienen un uso de memoria previamente liberada en el componente my_wildcmp_8bit_impl en el archivo /strings/ctype-simple.c A flaw was found in the MariaDB Server. It contains a use-after-free in the component, my_wildcmp_8bit_impl at /strings/ctype-simple.c, affecting availability. MariaDB is a mult... • https://jira.mariadb.org/browse/MDEV-28097 • CWE-416: Use After Free •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 1CVE-2022-27451 – mariadb: crash via window function in expression in ORDER BY
https://notcve.org/view.php?id=CVE-2022-27451
14 Apr 2022 — MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/field_conv.cc. Se ha detectado que MariaDB Server versiones v10.9 y anteriores, contienen un fallo de segmentación por medio del componente sql/field_conv.cc A flaw was found in the MariaDB Server. It contains a segmentation fault via the component, sql/field_conv.cc, affecting availability. Several security issues were discovered in MariaDB and this update includes new upstream MariaDB versions to fix these ... • https://jira.mariadb.org/browse/MDEV-28094 • CWE-1173: Improper Use of Validation Framework •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 1CVE-2022-27452 – mariadb: assertion failure in sql/item_cmpfunc.cc
https://notcve.org/view.php?id=CVE-2022-27452
14 Apr 2022 — MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_cmpfunc.cc. Se ha detectado que MariaDB Server versiones v10.9 y anteriores, contienen un fallo de segmentación por medio del componente sql/item_cmpfunc.cc A flaw was found in the MariaDB Server. It contains a segmentation fault via the component, sql/item_cmpfunc.cc, affecting availability. MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-compat... • https://jira.mariadb.org/browse/MDEV-28090 • CWE-617: Reachable Assertion •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 1CVE-2022-27449 – mariadb: assertion failure in sql/item_func.cc
https://notcve.org/view.php?id=CVE-2022-27449
14 Apr 2022 — MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_func.cc:148. Se ha detectado que MariaDB Server versiones v10.9 y anteriores, contienen un fallo de segmentación por medio del componente sql/item_func.cc:148 A flaw was found in the MariaDB Server. It contains a segmentation fault via the component, sql/item_func.cc:148, affecting availability. MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-com... • https://jira.mariadb.org/browse/MDEV-28089 • CWE-617: Reachable Assertion •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 1CVE-2022-27448 – mariadb: crash in multi-update and implicit grouping
https://notcve.org/view.php?id=CVE-2022-27448
14 Apr 2022 — There is an Assertion failure in MariaDB Server v10.9 and below via 'node->pcur->rel_pos == BTR_PCUR_ON' at /row/row0mysql.cc. Se presenta un fallo de aserción en MariaDB Server versiones v10.9 y anteriores, por medio de "node-)pcur-)rel_pos == BTR_PCUR_ON" en el archivo /row/row0mysql.cc An assertion failure was found in the MariaDB Server. This issue is via, 'node->pcur->rel_pos == BTR_PCUR_ON' at /row/row0mysql.cc, affecting availability. MariaDB is a multi-user, multi-threaded SQL database server. For a... • https://jira.mariadb.org/browse/MDEV-28095 • CWE-617: Reachable Assertion •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 1CVE-2022-27447 – mariadb: use-after-poison in Binary_string::free_buffer
https://notcve.org/view.php?id=CVE-2022-27447
14 Apr 2022 — MariaDB Server v10.9 and below was discovered to contain a use-after-free via the component Binary_string::free_buffer() at /sql/sql_string.h. Se ha detectado que MariaDB Server versiones v10.9 y anteriores, contienen un uso de memoria previamente liberada por medio del componente Binary_string::free_buffer() en el archivo /sql/sql_string.h A flaw was found in the MariaDB Server. It contains a use-after-free via the component,Binary_string::free_buffer() at /sql/sql_string.h, affecting availability. MariaDB... • https://jira.mariadb.org/browse/MDEV-28099 • CWE-416: Use After Free CWE-617: Reachable Assertion •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 1CVE-2022-27446 – mariadb: crash when using HAVING with IS NULL predicate in an equality
https://notcve.org/view.php?id=CVE-2022-27446
14 Apr 2022 — MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_cmpfunc.h. Se ha detectado que MariaDB Server versiones v10.9 y anteriores, contienen un fallo de segmentación por medio del componente sql/item_cmpfunc.h A flaw was found in the MariaDB Server. It contains a segmentation fault via the component, sql/item_cmpfunc.h, impacting availability. Several security issues were discovered in MariaDB and this update includes new upstream MariaDB versions to fix the... • https://jira.mariadb.org/browse/MDEV-28082 • CWE-617: Reachable Assertion •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 1CVE-2022-27445 – mariadb: assertion failure in compare_order_elements
https://notcve.org/view.php?id=CVE-2022-27445
14 Apr 2022 — MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/sql_window.cc. Se ha detectado que MariaDB Server versiones v10.9 y anteriores, contienen un fallo de segmentación por medio del componente sql/sql_window.cc A flaw was found in the MariaDB Server. It contains a segmentation fault via the component, sql/sql_window.cc, impacting availability. MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-compatible w... • https://jira.mariadb.org/browse/MDEV-28081 •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 1CVE-2022-27444 – mariadb: crash when using HAVING with NOT EXIST predicate in an equality
https://notcve.org/view.php?id=CVE-2022-27444
14 Apr 2022 — MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_subselect.cc. Se ha detectado que MariaDB Server versiones v10.9 y anteriores, contienen un fallo de segmentación por medio del componente sql/item_subselect.cc A flaw was found in the MariaDB Server. It contains a segmentation fault via the component, sql/item_subselect.cc, affecting availability. MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-... • https://jira.mariadb.org/browse/MDEV-28080 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •