Bugs fixes in "mariadb-10.3"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2022-24048 | MariaDB CONNECT Storage Engine Stack-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate | 2022-02-28 |
| CVE | CVE-2021-46659 | MariaDB before 10.7.2 allows an application crash because it does not recognize that SELECT_LEX::nest_level is local to each VIEW. | 2022-02-28 |
| CVE | CVE-2021-46668 | MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements that improperly interact with storage-engine resource | 2022-02-28 |
| CVE | CVE-2021-46665 | MariaDB through 10.5.9 allows a sql_parse.cc application crash because of incorrect used_tables expectations. | 2022-02-28 |
| CVE | CVE-2021-46664 | MariaDB through 10.5.9 allows an application crash in sub_select_postjoin_aggr for a NULL value of aggr. | 2022-02-28 |
| CVE | CVE-2021-46663 | MariaDB through 10.5.13 allows a ha_maria::extra application crash via certain SELECT statements. | 2022-02-28 |
| CVE | CVE-2021-46661 | MariaDB through 10.5.9 allows an application crash in find_field_in_tables and find_order_in_list via an unused common table expression (CTE). | 2022-02-28 |
| Launchpad | 1961350 | CVE-2022-24048 et al affect MariaDB in Ubuntu | 2022-02-28 |
| CVE | CVE-2021-35604 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.35 and prior and 8.0.26 a | 2021-12-06 |
| Debian | 989898 | MariaDB crashes with "Crash: WSREP: invalid state ROLLED_BACK (FATAL)" | 2021-12-06 |
| Launchpad | 1951709 | CVE-2021-35604 affects MariaDB in Ubuntu | 2021-12-06 |
| CVE | CVE-2021-35604 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.35 and prior and 8.0.26 a | 2021-12-06 |
| Debian | 989898 | MariaDB crashes with "Crash: WSREP: invalid state ROLLED_BACK (FATAL)" | 2021-12-06 |
| Launchpad | 1951709 | CVE-2021-35604 affects MariaDB in Ubuntu | 2021-12-06 |
| CVE | CVE-2021-2372 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.34 and prior and 8.0.25 a | 2021-08-13 |
| CVE | CVE-2021-2389 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.34 and prior and 8.0.25 a | 2021-08-13 |
| Launchpad | 1939188 | CVE-2021-2389 \u0026 CVE-2021-2372 affect MariaDB in Ubuntu | 2021-08-13 |
| CVE | CVE-2021-2372 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.34 and prior and 8.0.25 a | 2021-08-12 |
| CVE | CVE-2021-2389 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.34 and prior and 8.0.25 a | 2021-08-12 |
| Launchpad | 1939188 | CVE-2021-2389 \u0026 CVE-2021-2372 affect MariaDB in Ubuntu | 2021-08-12 |
About
-
Send Feedback to @ubuntu_updates
