CVE-2021-44503

Vulnerability

An issue in FIS GT.M through V7.0-000 (related to the YottaDB code base) allows a crafted input to cause a call to va_arg on an empty variadic parameter list. This bug was discovered through fuzz testing and affects versions up to GT.M V7.0-000 (YottaDB r1.34 and earlier according to related references). [1][2]

Exploitation

An attacker can provide specially crafted input to trigger the vulnerable code path. No authentication or special privileges are required beyond the ability to supply the malicious input to the affected software. The exact sequence involves the input causing a variadic function to attempt reading an argument that does not exist, leading to undefined behavior. [2]

Impact

Successful exploitation typically results in a memory segmentation fault, causing a denial-of-service (DoS) condition. The impact is limited to application crash; there is no evidence of code execution or data breach from this specific issue. [2]

Mitigation

The fix is included in YottaDB r1.34 (as per the reference to Issue #828). For the GT.M product line, users should apply updates from the GT.M download page when a patched version becomes available. No workaround is documented; upgrading to the fixed release is the recommended mitigation. [1][2]