CVE-2025-61021
Description
An issue in the sqlo_natural_join_cond component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = 7.2.11
Patches
Vulnerability mechanics
Root cause
"A null-pointer dereference or invalid memory access in `sqlo_natural_join_cond` when compiling a crafted UPDATE statement with nested NATURAL JOIN and scalar subqueries."
Attack vector
An attacker sends a crafted SQL statement that creates tables, views, and then executes an UPDATE with a complex correlated subquery involving NATURAL JOIN and scalar subqueries. The payload is delivered over the network to the Virtuoso server's SQL interface (port 1111). The crash occurs during query compilation, not execution, so no authentication is required beyond the default DBA credentials used in the reproduction. [ref_id=1]
Affected code
The crash occurs in the `sqlo_natural_join_cond` function (frame #0 in the backtrace) during query compilation of an `UPDATE` statement that references a `NATURAL JOIN` view. The call chain passes through `sqlo_add_table_ref`, `sqlo_select_scope`, and `sqlo_scalar_subq_scope` before reaching the fault site.
What the fix does
The advisory does not include a patch or fix description. The issue report [ref_id=1] only documents the crash and provides a backtrace; no code change or remediation guidance is published. Users must await an upstream fix or avoid executing untrusted SQL statements against the server.
Preconditions
- networkAttacker must be able to send SQL statements to the Virtuoso server (e.g., via isql on port 1111).
- configThe server must be running a vulnerable version (v7.2.11 or possibly earlier).
Generated on Jun 24, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
1News mentions
0No linked articles in our index yet.