Search CVE reports

101 – 110 of 263 results

Detailed view

Sort by:

CVE-2021-46662

Medium priority

Some fixes available 1 of 4

MariaDB through 10.5.9 allows a set_var.cc application crash via certain uses of an UPDATE statement in conjunction with a nested subquery.

3 affected packages

mariadb-10.3, mariadb-10.5, mariadb-10.6

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mariadb-10.3	—	—	Fixed	—	Ignored
mariadb-10.5	—	—	—	—	Ignored
mariadb-10.6	Not in release	Not affected	—	—	Ignored

CVE-2021-46661

Medium priority

Some fixes available 3 of 5

MariaDB through 10.5.9 allows an application crash in find_field_in_tables and find_order_in_list via an unused common table expression (CTE).

3 affected packages

mariadb-10.3, mariadb-10.5, mariadb-10.6

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mariadb-10.3	—	—	Fixed	—	Ignored
mariadb-10.5	—	—	—	—	Ignored
mariadb-10.6	Not in release	Fixed	—	—	Ignored

CVE-2021-46659

Medium priority

Some fixes available 2 of 4

MariaDB before 10.7.2 allows an application crash because it does not recognize that SELECT_LEX::nest_level is local to each VIEW.

3 affected packages

mariadb-10.3, mariadb-10.5, mariadb-10.6

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mariadb-10.3	—	—	Fixed	—	Ignored
mariadb-10.5	—	—	—	—	Ignored
mariadb-10.6	Not in release	Not affected	—	—	Ignored

CVE-2021-46658

Medium priority

Needs evaluation

save_window_function_values in MariaDB before 10.6.3 allows an application crash because of incorrect handling of with_window_func=true for a subquery.

3 affected packages

mariadb-10.3, mariadb-10.5, mariadb-10.6

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mariadb-10.3	—	—	Needs evaluation	—	Ignored
mariadb-10.5	—	—	—	—	Ignored
mariadb-10.6	Not in release	Not affected	—	—	Ignored

CVE-2021-46657

Medium priority

Needs evaluation

get_sort_by_table in MariaDB before 10.6.2 allows an application crash via certain subquery uses of ORDER BY.

3 affected packages

mariadb-10.3, mariadb-10.5, mariadb-10.6

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mariadb-10.3	—	—	Needs evaluation	—	Ignored
mariadb-10.5	—	—	—	—	Ignored
mariadb-10.6	Not in release	Not affected	—	—	Ignored

CVE-2021-46322

Medium priority

Vulnerable

Duktape v2.99.99 was discovered to contain a SEGV vulnerability via the component duk_push_tval in duktape/duk_api_stack.c.

14 affected packages

ceph, duktape, mariadb-10.0, mariadb-10.1, mariadb-10.3...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
ceph	Not affected	Not affected	Not affected	Not affected	Not affected
duktape	Not affected	Not affected	Vulnerable	Needs evaluation	Ignored
mariadb-10.0	Not in release	Not in release	Not in release	Not in release	Needs evaluation
mariadb-10.1	Not in release	Not in release	Not in release	Needs evaluation	Not in release
mariadb-10.3	Not in release	Not in release	Needs evaluation	Not in release	Not in release
mariadb-10.5	—	—	Not in release	Not in release	Not in release
mariadb-5.5	Not in release	Not in release	Not in release	Not in release	Not in release
mysql-5.5	Not in release	Not in release	Not in release	Not in release	Not in release
mysql-5.6	Not in release	Not in release	Not in release	Not in release	Not in release
mysql-5.7	Not in release	Not in release	Not in release	Not affected	Not affected
mysql-8.0	Not affected	Not affected	Not affected	Not in release	Not in release
percona-server-5.6	Not in release	Not in release	Not in release	Not in release	Needs evaluation
percona-xtradb-cluster-5.5	Not in release	Not in release	Not in release	Not in release	Not in release
percona-xtradb-cluster-5.6	Not in release	Not in release	Not in release	Not in release	Needs evaluation

CVE-2022-21379

Medium priority

Some fixes available 7 of 16

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication Plugin). Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker...

12 affected packages

mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-5.5...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mariadb-10.0	Not in release	Not in release	Not in release	Not in release	Needs evaluation
mariadb-10.1	Not in release	Not in release	Not in release	Needs evaluation	Not in release
mariadb-10.3	Not in release	Not in release	Needs evaluation	Not in release	Not in release
mariadb-10.5	—	—	Not in release	Not in release	Not in release
mariadb-5.5	Not in release	Not in release	Not in release	Not in release	Not in release
mysql-5.5	Not in release	Not in release	Not in release	Not in release	Not in release
mysql-5.6	Not in release	Not in release	Not in release	Not in release	Not in release
mysql-5.7	Not in release	Not in release	Not in release	Not affected	Not affected
mysql-8.0	Fixed	Fixed	Fixed	Not in release	Not in release
percona-server-5.6	Not in release	Not in release	Not in release	Not in release	Needs evaluation
percona-xtradb-cluster-5.5	Not in release	Not in release	Not in release	Not in release	Not in release
percona-xtradb-cluster-5.6	Not in release	Not in release	Not in release	Not in release	Needs evaluation

CVE-2022-21378

Medium priority

Some fixes available 7 of 16

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network...

12 affected packages

mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-5.5...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mariadb-10.0	Not in release	Not in release	Not in release	Not in release	Needs evaluation
mariadb-10.1	Not in release	Not in release	Not in release	Needs evaluation	Not in release
mariadb-10.3	Not in release	Not in release	Needs evaluation	Not in release	Not in release
mariadb-10.5	—	—	Not in release	Not in release	Not in release
mariadb-5.5	Not in release	Not in release	Not in release	Not in release	Not in release
mysql-5.5	Not in release	Not in release	Not in release	Not in release	Not in release
mysql-5.6	Not in release	Not in release	Not in release	Not in release	Not in release
mysql-5.7	Not in release	Not in release	Not in release	Not affected	Not affected
mysql-8.0	Fixed	Fixed	Fixed	Not in release	Not in release
percona-server-5.6	Not in release	Not in release	Not in release	Not in release	Needs evaluation
percona-xtradb-cluster-5.5	Not in release	Not in release	Not in release	Not in release	Not in release
percona-xtradb-cluster-5.6	Not in release	Not in release	Not in release	Not in release	Needs evaluation

CVE-2022-21374

Medium priority

Some fixes available 7 of 16

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with...

12 affected packages

mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-5.5...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mariadb-10.0	Not in release	Not in release	Not in release	Not in release	Needs evaluation
mariadb-10.1	Not in release	Not in release	Not in release	Needs evaluation	Not in release
mariadb-10.3	Not in release	Not in release	Needs evaluation	Not in release	Not in release
mariadb-10.5	—	—	Not in release	Not in release	Not in release
mariadb-5.5	Not in release	Not in release	Not in release	Not in release	Not in release
mysql-5.5	Not in release	Not in release	Not in release	Not in release	Not in release
mysql-5.6	Not in release	Not in release	Not in release	Not in release	Not in release
mysql-5.7	Not in release	Not in release	Not in release	Not affected	Not affected
mysql-8.0	Fixed	Fixed	Fixed	Not in release	Not in release
percona-server-5.6	Not in release	Not in release	Not in release	Not in release	Needs evaluation
percona-xtradb-cluster-5.5	Not in release	Not in release	Not in release	Not in release	Not in release
percona-xtradb-cluster-5.6	Not in release	Not in release	Not in release	Not in release	Needs evaluation

CVE-2022-21372

Medium priority

Some fixes available 7 of 16

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with...

12 affected packages

mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-5.5...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mariadb-10.0	Not in release	Not in release	Not in release	Not in release	Needs evaluation
mariadb-10.1	Not in release	Not in release	Not in release	Needs evaluation	Not in release
mariadb-10.3	Not in release	Not in release	Needs evaluation	Not in release	Not in release
mariadb-10.5	—	—	Not in release	Not in release	Not in release
mariadb-5.5	Not in release	Not in release	Not in release	Not in release	Not in release
mysql-5.5	Not in release	Not in release	Not in release	Not in release	Not in release
mysql-5.6	Not in release	Not in release	Not in release	Not in release	Not in release
mysql-5.7	Not in release	Not in release	Not in release	Not affected	Not affected
mysql-8.0	Fixed	Fixed	Fixed	Not in release	Not in release
percona-server-5.6	Not in release	Not in release	Not in release	Not in release	Needs evaluation
percona-xtradb-cluster-5.5	Not in release	Not in release	Not in release	Not in release	Not in release
percona-xtradb-cluster-5.6	Not in release	Not in release	Not in release	Not in release	Needs evaluation

Export to JSON

Results by page: