CVE-2021-44498
Description
An issue was discovered in FIS GT.M through V7.0-000 (related to the YottaDB code base). Using crafted input, attackers can cause a type to be incorrectly initialized in the function f_incr in sr_port/f_incr.c and cause a crash due to a NULL pointer dereference.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Crafted input causes NULL pointer dereference in FIS GT.M through V7.0-000 and YottaDB, leading to a crash.
Vulnerability
An issue in FIS GT.M through V7.0-000 (and the related YottaDB code base) allows crafted input to cause incorrect type initialization in the f_incr function in sr_port/f_incr.c. This results in a NULL pointer dereference and a crash. The vulnerability was discovered through fuzz testing [2]. Affected versions include GT.M up to V7.0-000 [1] and YottaDB versions prior to the r1.34 release.
Exploitation
An attacker can trigger the vulnerability by providing specially crafted input to the database engine. No authentication or special privileges are required; the attacker only needs the ability to send or inject the malicious input into the system, potentially over a network or through a local interface.
Impact
Successful exploitation causes a denial of service (DoS) due to a crash from the NULL pointer dereference. No code execution or data corruption is indicated in the available references.
Mitigation
YottaDB has fixed this issue in release r1.34 [2]. For GT.M users, upgrading to a version beyond V7.0-000 is recommended if a patch is available; otherwise, no official fix has been announced for GT.M as of the publication date. Users should monitor vendor advisories for updates.
AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
3- FIS/GT.Mdescription
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- tinco.pair.com/bhaskar/gtm/doc/articles/GTM_V7.0-002_Release_Notes.htmlmitrex_refsource_MISC
- gitlab.com/YottaDB/DB/YDB/-/issues/828mitrex_refsource_MISC
- sourceforge.net/projects/fis-gtm/files/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.