CVE-2022-32089
Description
MariaDB v10.5 to v10.7 was discovered to contain a segmentation fault via the component st_select_lex_unit::exclude_level.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.124
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple vulnerabilities affected in MariaDB 10.7.3 | Windows |
| Multiple vulnerabilities fixed in MariaDB MariaDB 10.4.26 | Windows |
| Multiple vulnerabilities fixed in MariaDB MariaDB 10.5.17 | Windows |
| Multiple vulnerabilities fixed in MariaDB MariaDB 10.6.9 | Windows |
| Multiple vulnerabilities fixed in MariaDB MariaDB 10.7.5 | Windows |
| Multiple vulnerabilities fixed in MariaDB MariaDB 10.8.4 | Windows |
| Multiple vulnerabilities fixed in MariaDB MariaDB 10.9.2 | Windows |
| MariaDB database (USN-5739-1) mariadb-server_10.3.37-0ubuntu0.20.04.1_all.deb | Linux |
| MariaDB database (USN-5739-1) mariadb-server_10.6.11-0ubuntu0.22.04.1_all.deb | Linux |
| MariaDB database (USN-5739-1) mariadb-server_10.6.11-0ubuntu0.22.10.1_all.deb | Linux |
| Judy update (ELSA-2023-5683) Judy-1.0.5-18.module+el8.4.0+20040+caf70fad.x86_64.rpm | Linux |
| Galera update (ELSA-2023-5683) galera-26.4.14-1.module+el8.8.0+21173+e955d7af.x86_64.rpm | Linux |
| Mariadb update (ELSA-2023-5683) mariadb-10.5.22-1.module+el8.8.0+21173+e955d7af.x86_64.rpm | Linux |
| Mariadb-backup update (ELSA-2023-5683) mariadb-backup-10.5.22-1.module+el8.8.0+21173+e955d7af.x86_64.rpm | Linux |
| Mariadb-common update (ELSA-2023-5683) mariadb-common-10.5.22-1.module+el8.8.0+21173+e955d7af.x86_64.rpm | Linux |
| Mariadb-devel update (ELSA-2023-5683) mariadb-devel-10.5.22-1.module+el8.8.0+21173+e955d7af.x86_64.rpm | Linux |
| Mariadb-embedded update (ELSA-2023-5683) mariadb-embedded-10.5.22-1.module+el8.8.0+21173+e955d7af.x86_64.rpm | Linux |
| Mariadb-embedded-devel update (ELSA-2023-5683) mariadb-embedded-devel-10.5.22-1.module+el8.8.0+21173+e955d7af.x86_64.rpm | Linux |
| Mariadb-errmsg update (ELSA-2023-5683) mariadb-errmsg-10.5.22-1.module+el8.8.0+21173+e955d7af.x86_64.rpm | Linux |
| Mariadb-gssapi-server update (ELSA-2023-5683) mariadb-gssapi-server-10.5.22-1.module+el8.8.0+21173+e955d7af.x86_64.rpm | Linux |
| Mariadb-oqgraph-engine update (ELSA-2023-5683) mariadb-oqgraph-engine-10.5.22-1.module+el8.8.0+21173+e955d7af.x86_64.rpm | Linux |
| Mariadb-pam update (ELSA-2023-5683) mariadb-pam-10.5.22-1.module+el8.8.0+21173+e955d7af.x86_64.rpm | Linux |
| Mariadb-server update (ELSA-2023-5683) mariadb-server-10.5.22-1.module+el8.8.0+21173+e955d7af.x86_64.rpm | Linux |
| Mariadb-server-galera update (ELSA-2023-5683) mariadb-server-galera-10.5.22-1.module+el8.8.0+21173+e955d7af.x86_64.rpm | Linux |
| Mariadb-server-utils update (ELSA-2023-5683) mariadb-server-utils-10.5.22-1.module+el8.8.0+21173+e955d7af.x86_64.rpm | Linux |
| Mariadb-test update (ELSA-2023-5683) mariadb-test-10.5.22-1.module+el8.8.0+21173+e955d7af.x86_64.rpm | Linux |
| Galera update (ELSA-2023-5684) galera-26.4.14-1.0.1.el9_2.x86_64.rpm | Linux |
| Mariadb update (ELSA-2023-5684) mariadb-10.5.22-1.el9_2.x86_64.rpm | Linux |
| Mariadb-backup update (ELSA-2023-5684) mariadb-backup-10.5.22-1.el9_2.x86_64.rpm | Linux |
| Mariadb-common update (ELSA-2023-5684) mariadb-common-10.5.22-1.el9_2.x86_64.rpm | Linux |
| Mariadb-embedded update (ELSA-2023-5684) mariadb-embedded-10.5.22-1.el9_2.x86_64.rpm | Linux |
| Mariadb-errmsg update (ELSA-2023-5684) mariadb-errmsg-10.5.22-1.el9_2.x86_64.rpm | Linux |
| Mariadb-gssapi-server update (ELSA-2023-5684) mariadb-gssapi-server-10.5.22-1.el9_2.x86_64.rpm | Linux |
| Mariadb-oqgraph-engine update (ELSA-2023-5684) mariadb-oqgraph-engine-10.5.22-1.el9_2.x86_64.rpm | Linux |
| Mariadb-pam update (ELSA-2023-5684) mariadb-pam-10.5.22-1.el9_2.x86_64.rpm | Linux |
| Mariadb-server update (ELSA-2023-5684) mariadb-server-10.5.22-1.el9_2.x86_64.rpm | Linux |
| Mariadb-server-galera update (ELSA-2023-5684) mariadb-server-galera-10.5.22-1.el9_2.x86_64.rpm | Linux |
| Mariadb-server-utils update (ELSA-2023-5684) mariadb-server-utils-10.5.22-1.el9_2.x86_64.rpm | Linux |
| Multiple vulnerabilities affected in MariaDB 10.7.3 (For Linux) | Linux |
| (RHSA-2023:5683)Important: security update Judy-1.0.5-18.module+el8.4.0+9031+9abc7af9.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update Judy-debuginfo-1.0.5-18.module+el8.4.0+9031+9abc7af9.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update Judy-debugsource-1.0.5-18.module+el8.4.0+9031+9abc7af9.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update galera-26.4.14-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update galera-debuginfo-26.4.14-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update galera-debugsource-26.4.14-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-backup-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-backup-debuginfo-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-common-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-debuginfo-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-debugsource-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-devel-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-embedded-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-embedded-debuginfo-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-embedded-devel-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-errmsg-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-gssapi-server-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-gssapi-server-debuginfo-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-oqgraph-engine-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-oqgraph-engine-debuginfo-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-pam-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-pam-debuginfo-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-server-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-server-debuginfo-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-server-galera-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-server-utils-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-server-utils-debuginfo-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-test-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| (RHSA-2023:5683)Important: security update mariadb-test-debuginfo-10.5.22-1.module+el8.8.0+20134+a92c7654.x86_64.rpm | Linux |
| Important: mariadb:10.5 security update galera-26.4.14-1.module_el8.8.0+3620+5d452900.x86_64.rpm | Linux |
| mariadb105 Security Update (ALAS2023-2023-037) mariadb105-10.5.16-1.amzn2023.0.7.x86_64.rpm | Linux |
| mariadb105 Security Update (ALAS2023-2023-037) mariadb105-backup-10.5.16-1.amzn2023.0.7.x86_64.rpm | Linux |
| mariadb105 Security Update (ALAS2023-2023-037) mariadb105-common-10.5.16-1.amzn2023.0.7.x86_64.rpm | Linux |
| mariadb105 Security Update (ALAS2023-2023-037) mariadb105-connect-engine-10.5.16-1.amzn2023.0.7.x86_64.rpm | Linux |
| mariadb105 Security Update (ALAS2023-2023-037) mariadb105-cracklib-password-check-10.5.16-1.amzn2023.0.7.x86_64.rpm | Linux |
| mariadb105 Security Update (ALAS2023-2023-037) mariadb105-devel-10.5.16-1.amzn2023.0.7.x86_64.rpm | Linux |
| mariadb105 Security Update (ALAS2023-2023-037) mariadb105-errmsg-10.5.16-1.amzn2023.0.7.x86_64.rpm | Linux |
| mariadb105 Security Update (ALAS2023-2023-037) mariadb105-gssapi-server-10.5.16-1.amzn2023.0.7.x86_64.rpm | Linux |
| mariadb105 Security Update (ALAS2023-2023-037) mariadb105-oqgraph-engine-10.5.16-1.amzn2023.0.7.x86_64.rpm | Linux |
| mariadb105 Security Update (ALAS2023-2023-037) mariadb105-pam-10.5.16-1.amzn2023.0.7.x86_64.rpm | Linux |
| mariadb105 Security Update (ALAS2023-2023-037) mariadb105-rocksdb-engine-10.5.16-1.amzn2023.0.7.x86_64.rpm | Linux |
| mariadb105 Security Update (ALAS2023-2023-037) mariadb105-server-10.5.16-1.amzn2023.0.7.x86_64.rpm | Linux |
| mariadb105 Security Update (ALAS2023-2023-037) mariadb105-server-utils-10.5.16-1.amzn2023.0.7.x86_64.rpm | Linux |
| mariadb105 Security Update (ALAS2023-2023-037) mariadb105-sphinx-engine-10.5.16-1.amzn2023.0.7.x86_64.rpm | Linux |
| mariadb105 Security Update (ALAS2023-2023-037) mariadb105-test-10.5.16-1.amzn2023.0.7.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234