rpm package
suse/mariadb&distro=SUSE Linux Enterprise Server 15 SP2-BCL
pkg:rpm/suse/mariadb&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCL
Vulnerabilities (46)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-46665 | — | < 10.4.24-3.25.1 | 10.4.24-3.25.1 | Feb 1, 2022 | MariaDB through 10.5.9 allows a sql_parse.cc application crash because of incorrect used_tables expectations. | ||
| CVE-2021-46668 | — | < 10.4.24-3.25.1 | 10.4.24-3.25.1 | Feb 1, 2022 | MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements that improperly interact with storage-engine resource limitations for temporary data structures. | ||
| CVE-2021-46669 | — | < 10.4.25-150200.3.28.1 | 10.4.25-150200.3.28.1 | Feb 1, 2022 | MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used. | ||
| CVE-2021-46657 | — | < 10.4.24-3.25.1 | 10.4.24-3.25.1 | Jan 29, 2022 | get_sort_by_table in MariaDB before 10.6.2 allows an application crash via certain subquery uses of ORDER BY. | ||
| CVE-2021-46658 | — | < 10.4.24-3.25.1 | 10.4.24-3.25.1 | Jan 29, 2022 | save_window_function_values in MariaDB before 10.6.3 allows an application crash because of incorrect handling of with_window_func=true for a subquery. | ||
| CVE-2021-46659 | — | < 10.4.24-3.25.1 | 10.4.24-3.25.1 | Jan 29, 2022 | MariaDB before 10.7.2 allows an application crash because it does not recognize that SELECT_LEX::nest_level is local to each VIEW. |
- CVE-2021-46665Feb 1, 2022affected < 10.4.24-3.25.1fixed 10.4.24-3.25.1
MariaDB through 10.5.9 allows a sql_parse.cc application crash because of incorrect used_tables expectations.
- CVE-2021-46668Feb 1, 2022affected < 10.4.24-3.25.1fixed 10.4.24-3.25.1
MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements that improperly interact with storage-engine resource limitations for temporary data structures.
- CVE-2021-46669Feb 1, 2022affected < 10.4.25-150200.3.28.1fixed 10.4.25-150200.3.28.1
MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used.
- CVE-2021-46657Jan 29, 2022affected < 10.4.24-3.25.1fixed 10.4.24-3.25.1
get_sort_by_table in MariaDB before 10.6.2 allows an application crash via certain subquery uses of ORDER BY.
- CVE-2021-46658Jan 29, 2022affected < 10.4.24-3.25.1fixed 10.4.24-3.25.1
save_window_function_values in MariaDB before 10.6.3 allows an application crash because of incorrect handling of with_window_func=true for a subquery.
- CVE-2021-46659Jan 29, 2022affected < 10.4.24-3.25.1fixed 10.4.24-3.25.1
MariaDB before 10.7.2 allows an application crash because it does not recognize that SELECT_LEX::nest_level is local to each VIEW.
Page 3 of 3