First published: Thu Apr 14 2022(Updated: )
MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/field_conv.cc.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Mariadb Mariadb | >=10.4.0<10.4.25 | |
Mariadb Mariadb | >=10.5.0<10.5.16 | |
Mariadb Mariadb | >=10.6.0<10.6.8 | |
Mariadb Mariadb | >=10.7.0<10.7.4 | |
redhat/mariadb | <10.7.4 | 10.7.4 |
redhat/mariadb | <10.6.8 | 10.6.8 |
redhat/mariadb | <10.5.16 | 10.5.16 |
redhat/mariadb | <10.4.25 | 10.4.25 |
ubuntu/mariadb-10.3 | <1:10.3.37-0ubuntu0.20.04.1 | 1:10.3.37-0ubuntu0.20.04.1 |
ubuntu/mariadb-10.6 | <1:10.6.11-0ubuntu0.22.04.1 | 1:10.6.11-0ubuntu0.22.04.1 |
ubuntu/mariadb-10.6 | <1:10.6.8-1 | 1:10.6.8-1 |
debian/mariadb-10.3 | 1:10.3.34-0+deb10u1 1:10.3.39-0+deb10u2 | |
debian/mariadb-10.5 | 1:10.5.23-0+deb11u1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-27451
The severity of CVE-2022-27451 is high with a score of 7.5.
The affected software is MariaDB Server version 10.9 and below.
Upgrade to MariaDB Server version 10.7.4 or apply the appropriate patch provided by the vendor.
You can find more information about CVE-2022-27451 at the following references: [Reference 1](https://jira.mariadb.org/browse/MDEV-28094), [Reference 2](https://security.netapp.com/advisory/ntap-20220526-0006/), [Reference 3](https://github.com/MariaDB/server/commit/8c34eab9688b4face54f15f89f5d62bdfd93b8a7).