What is the vulnerability ID for this vulnerability?

The vulnerability ID for this vulnerability is CVE-2022-32091.

What is the severity rating of CVE-2022-32091?

CVE-2022-32091 has a severity rating of 7.5 (high).

What is the affected software for CVE-2022-32091?

The affected software for CVE-2022-32091 is MariaDB v10.7 up to and excluding v10.9.2.

How can I fix CVE-2022-32091?

To fix CVE-2022-32091, upgrade MariaDB to version 10.9.2 or above.

Where can I find more information about CVE-2022-32091?

You can find more information about CVE-2022-32091 in the following references: [Reference 1](https://jira.mariadb.org/browse/MDEV-26431), [Reference 2](https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2116312), [Reference 3](https://access.redhat.com/errata/RHSA-2023:5259).

Vulnerability/
CVE-2022-32091

high

7.5

CWE

416

1/7/2022

21/11/2024

CVE-2022-32091: Use After Free

First published: Fri Jul 01 2022(Updated: )

Last updated 24 July 2024

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
redhat/mariadb	<10.9.2	10.9.2
redhat/mariadb	<10.8.4	10.8.4
redhat/mariadb	<10.7.5	10.7.5
redhat/mariadb	<10.6.9	10.6.9
redhat/mariadb	<10.5.17	10.5.17
redhat/mariadb	<10.4.26	10.4.26
redhat/mariadb	<10.3.36	10.3.36
debian/mariadb-10.5		1:10.5.23-0+deb11u1 1:10.5.26-0+deb11u2
MariaDB Server	>=10.3.0<10.3.36
MariaDB Server	>=10.4.0<10.4.26
MariaDB Server	>=10.5.0<10.5.17
MariaDB Server	>=10.6.0<10.6.9
MariaDB Server	>=10.7.0<10.7.5
MariaDB Server	>=10.8.0<10.8.4
MariaDB Server	>=10.9.0<10.9.2
Debian	=10.0
Fedora	=35
Fedora	=36
Fedora	=37

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2022-32091.
What is the severity rating of CVE-2022-32091?
CVE-2022-32091 has a severity rating of 7.5 (high).
What is the affected software for CVE-2022-32091?
The affected software for CVE-2022-32091 is MariaDB v10.7 up to and excluding v10.9.2.
How can I fix CVE-2022-32091?
To fix CVE-2022-32091, upgrade MariaDB to version 10.9.2 or above.
Where can I find more information about CVE-2022-32091?
You can find more information about CVE-2022-32091 in the following references: [Reference 1](https://jira.mariadb.org/browse/MDEV-26431), [Reference 2](https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2116312), [Reference 3](https://access.redhat.com/errata/RHSA-2023:5259).

agent/type
agent/severity
agent/weakness
collector/launchpad-cve
source/Launchpad
agent/author
agent/first-publish-date
collector/mitre-cve
source/MITRE
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2022-32091
agent/software-canonical-lookup
collector/usn-cve
source/Ubuntu
agent/description
agent/event
collector/security-tracker-debian
source/Debian
agent/references
agent/last-modified-date
agent/trending
agent/source
agent/tags
agent/softwarecombine
collector/nvd-cve
source/NVD
agent/software-canonical-lookup-request
collector/nvd-index
package-manager/redhat
package-manager/debian
vendor/mariadb
canonical/mariadb server
version/mariadb server/10.3.0
version/mariadb server/10.4.0
version/mariadb server/10.5.0
version/mariadb server/10.6.0
version/mariadb server/10.7.0
version/mariadb server/10.8.0
version/mariadb server/10.9.0
vendor/debian
canonical/debian
version/debian/10.0
vendor/fedoraproject
canonical/fedora
version/fedora/35
version/fedora/36
version/fedora/37