MariaDB Server before 10.3.34 thru 10.9.3 is vulnerable to Denial of Service. It is possible for function spider_db_mbase::print_warnings to dereference a null pointer. https://jira.mariadb.org/browse/MDEV-29644 https://github.com/MariaDB/server/commit/be0a46b3d52b58956fd0d47d040b9f4514406954
Created mariadb tracking bugs for this issue: Affects: fedora-all [bug 2164948] Created mariadb:10.5/mariadb tracking bugs for this issue: Affects: fedora-all [bug 2164949] Created mariadb:10.6/mariadb tracking bugs for this issue: Affects: fedora-all [bug 2164950] Created mariadb:10.7/mariadb tracking bugs for this issue: Affects: fedora-all [bug 2164951] Created mariadb:10.8/mariadb tracking bugs for this issue: Affects: fedora-all [bug 2164952] Created mariadb:10.9/mariadb tracking bugs for this issue: Affects: fedora-all [bug 2164953]
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:5259 https://access.redhat.com/errata/RHSA-2023:5259
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:5684 https://access.redhat.com/errata/RHSA-2023:5684
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:5683 https://access.redhat.com/errata/RHSA-2023:5683
This issue has been addressed in the following products: Red Hat Software Collections for Red Hat Enterprise Linux 7 Via RHSA-2023:7633 https://access.redhat.com/errata/RHSA-2023:7633