First published: Sat Mar 08 2025(Updated: )
MariaDB Server 10.4 through 10.5.*, 10.6 through 10.6.*, 10.7 through 10.11.*, 11.0 through 11.0.*, and 11.1 through 11.4.* crashes in Item_direct_view_ref::derived_field_transformer_for_where.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
MariaDB | >=10.4<=10.5>=10.6<=10.6>=10.7<=10.11>=11.0<=11.0>=11.1<=11.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-52970 has been classified with high severity due to the potential crash of the MariaDB server.
To address CVE-2023-52970, upgrade your MariaDB server to version 10.6.12 or higher, 10.11.4 or higher, or 11.0.7 or higher.
CVE-2023-52970 affects MariaDB Server versions 10.4 to 10.5.*, 10.6.*, 10.7 to 10.11.*, 11.0.*, and 11.1 to 11.4.*.
Symptoms of CVE-2023-52970 include unexpected crashes in the MariaDB server when executing certain queries.
Organizations using affected versions of MariaDB Server for their databases may experience downtime and data accessibility issues due to CVE-2023-52970.