2075001 – (CVE-2022-27385) CVE-2022-27385 mariadb: crash in Used_tables_and_const_cache::used_tables_and_const_cache_join

Bug 2075001 (CVE-2022-27385) - CVE-2022-27385 mariadb: crash in Used_tables_and_const_cache::used_tables_and_const_cache_join

Summary: CVE-2022-27385 mariadb: crash in Used_tables_and_const_cache::used_tables_and...

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2022-27385
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2052892 2052893 2052894 2052895 2055836 2055837 2081140 2081367
Blocks:	2075026
TreeView+	depends on / blocked

Reported:	2022-04-13 11:54 UTC by TEJ RATHI
Modified:	2022-09-16 19:06 UTC (History)
CC List:	20 users (show)
Fixed In Version:	mariadb 10.6.5, mariadb 10.5.13, mariadb 10.4.22, mariadb 10.3.32
Doc Type:	If docs needed, set a value
Doc Text:	A flaw was found in MariaDB. An issue in the component, Used_tables_and_const_cache::used_tables_and_const_cache_join, of the MariaDB Server v10.7 allows attackers to cause a denial of service (DoS) via specially crafted SQL statements, impacting availability.
Clone Of:
Environment:
Last Closed:	2022-05-31 15:15:21 UTC
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2022:4818	0	None	None	None	2022-05-31 12:16:36 UTC

Description TEJ RATHI 2022-04-13 11:54:05 UTC

An issue in the component Used_tables_and_const_cache::used_tables_and_const_cache_join of MariaDB Server v10.7 and below was discovered to allow attackers to cause a Denial of Service (DoS) via specially crafted SQL statements.

https://jira.mariadb.org/browse/MDEV-26415

Comment 1 Mauro Matteo Cascella 2022-05-24 13:50:26 UTC

Upstream commit:
https://github.com/MariaDB/server/commit/ff77a09bda884fe6bf3917eb29b9d3a2f53f919b

Comment 2 errata-xmlrpc 2022-05-31 12:16:32 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Extended Update Support

Via RHSA-2022:4818 https://access.redhat.com/errata/RHSA-2022:4818

Comment 3 Product Security DevOps Team 2022-05-31 15:15:19 UTC

This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2022-27385

Note You need to log in before you can comment on or make changes to this bug.

caswilli
damien.ciabrini
databases-maint
dciabrin
eglynn
gzaronik
hhorak
jburrell
jjoyce
jorton
kaycoth
lhh
ljavorsk
mbayer
mburns
mkocka
mmuzila
mschorm
SpikeFedora
spower