MariaDB 10.3

zlib: Big-endian out-of-bounds pointer

mariadb: Insufficient SST method name check leading to code injection in mysql-wsrep

mariadb: lack of validating the existence of an object prior to performing operations on the object

mariadb: lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer

mariadb: lack of proper validation of a user-supplied string before using it as a format specifier

mariadb: CONNECT storage engine heap-based buffer overflow

mariadb: MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used

mariadb: server crashes in query_arena::set_query_arena upon SELECT from view

mariadb: assertion failure in sql/item_func.cc

mariadb: assertion failure in VDec::VDec at /sql/sql_type.cc

mariadb: use-after-poison in my_strcasecmp_8bit() of ctype-simple.c

mariadb: crash via component Item_subselect::init_expr_cache_tracker

mariadb: crash in Used_tables_and_const_cache::used_tables_and_const_cache_join

mariadb: server crash in create_tmp_table::finalize

zlib: A flaw found in zlib when compressing (not decompressing) certain inputs

mariadb: use-after-poison in Binary_string::free_buffer

mariadb: assertion failure in compare_order_elements

mariadb: assertion failure in sql/item_cmpfunc.cc

mariadb: crash in multi-update and implicit grouping

mariadb: use-after-poison when complex conversion is involved in blob

mariadb: server crash at Field::set_default via specially crafted SQL statements

mariadb: assertion failures in decimal_bin_size

mariadb: server crash at my_decimal::operator=

mariadb: assertion failure in Item_args::walk_arg

mariadb: server crash in component arg_comparator::compare_real_fixed

mariadb: segmentation fault via the component sub_select

mariadb: server crash in JOIN_CACHE::free or in copy_fields

mariadb: server crash in Item_args::walk_args

mariadb: segmentation fault in Exec_time_tracker::get_loops/Filesort_tracker::report_use/filesort

mariadb: server crash in Item_func_in::cleanup/Item::cleanup_processor

mariadb: server crash at Item_subselect::init_expr_cache_tracker

Mariadb: node crashes with transport endpoint is not connected mysqld got signal 6

Infinite loop in BN_mod_sqrt() reachable when parsing certificates

mariadb: writable system variables allows a database user with SUPER privilege to execute arbitrary code as the system mysql user

mysql: Server: Parser unspecified vulnerability (CPU Apr 2021)

mysql: InnoDB unspecified vulnerability (CPU Jul 2018)

mariadb: Named pipe permission issue on Windows

mysql: InnoDB unspecified vulnerability (CPU Jul 2018)

mysql: InnoDB unspecified vulnerability (CPU Oct 2018)

mysql: InnoDB unspecified vulnerability (CPU Oct 2018)

mysql: InnoDB unspecified vulnerability (CPU Oct 2018)

mysql: Server: XML unspecified vulnerability (CPU Jul 2019)

mysql: Server: Parser unspecified vulnerability (CPU Jul 2019)

mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019)

mysql: Server: DML unspecified vulnerability (CPU Apr 2020)

mysql: Server: FTS unspecified vulnerability (CPU Oct 2020)

mariadb: NULL pointer dereference in spider_db_mbase::print_warnings()

mysql: Server: Connection Handling unspecified vulnerability (CPU Jan 2019)

mysql: C API unspecified vulnerability (CPU Jan 2020)

mysql: InnoDB unspecified vulnerability (CPU Jul 2021)

mysql: InnoDB unspecified vulnerability (CPU Oct 2018)

mysql: InnoDB unspecified vulnerability (CPU Jul 2019)

mysql: InnoDB unspecified vulnerability (CPU Apr 2020)

mariadb: Crash executing query with VIEW, aggregate and subquery

mariadb: Integer overflow in sql_lex.cc integer leading to crash

mariadb: Crash in get_sort_by_table() in subquery with ORDER BY having outer ref

mariadb: MariaDB allows an application crash in find_field_in_tables and find_order_in_list via an unused common table expression (CTE)

mariadb: Crash in set_var.cc via certain UPDATE queries with nested subqueries

mariadb: Crash caused by mishandling of a pushdown from a HAVING clause to a WHERE clause

mariadb: MariaDB through 10.5.9 allows a sql_parse.cc application crash because of incorrect used_tables expectations

mariadb: save_window_function_values triggers an abort during IN subquery

mariadb: MariaDB through 10.5.13 allows a ha_maria::extra application crash via certain SELECT statements

mysql: InnoDB unspecified vulnerability (CPU Oct 2021)

mariadb: MariaDB through 10.5.9 allows an application crash in sub_select_postjoin_aggr for a NULL value of aggr

mariadb: MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements

mariadb: DoS due to improper locking due to unreleased lock in plugin/server_audit/server_audit.c

mariadb: compress_write() fails to release mutex on failure

mariadb: improper locking due to the unreleased lock in extra/mariabackup/ds_compress.cc

mariadb: improper locking due to the unreleased lock in extra/mariabackup/ds_compress.cc

mysql: Init script calling kill with root privileges using pid from pidfile owned by mysql user (CPU Oct 2018)

mysql: C API unspecified vulnerability (CPU Apr 2020)

mariadb: improper locking due to unreleased lock in the ds_xbstream.cc

mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2019)

mysql: Server: Storage Engines unspecified vulnerability (CPU Oct 2018)

mysql: InnoDB unspecified vulnerability (CPU Oct 2018)

mysql: Server: DDL unspecified vulnerability (CPU Jan 2019)

mysql: InnoDB unspecified vulnerability (CPU Oct 2018)

mysql: InnoDB unspecified vulnerability (CPU Jan 2019)

mysql: InnoDB unspecified vulnerability (CPU Oct 2018)

mysql: InnoDB unspecified vulnerability (CPU Oct 2018)

mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2018)

mysql: Server: Security: Privileges unspecified vulnerability (CPU Apr 2019)

mysql: Server: Pluggable Auth unspecified vulnerability (CPU Jul 2019)

mysql: InnoDB unspecified vulnerability (CPU Apr 2019)

mysql: Server: Stored Procedure unspecified vulnerability (CPU Apr 2020)

mysql: InnoDB unspecified vulnerability (CPU Apr 2020)

mysql: Server: FTS unspecified vulnerability (CPU Oct 2020)

mysql: InnoDB unspecified vulnerability (CPU Oct 2020)

mysql: Server: Locking unspecified vulnerability (CPU Oct 2020)

mysql: InnoDB unspecified vulnerability (CPU Apr 2021)

mysql: Server: DML unspecified vulnerability (CPU Apr 2021)

mysql: Server: DML unspecified vulnerability (CPU Apr 2021)

mysql: Server: FTS unspecified vulnerability (CPU Apr 2022)

mysql: InnoDB unspecified vulnerability (CPU Oct 2018)

mysql: Server: Replication unspecified vulnerability (CPU Apr 2019)

mysql: InnoDB unspecified vulnerability (CPU Oct 2019)

mysql: InnoDB unspecified vulnerability (CPU Jan 2021)

mysql: InnoDB unspecified vulnerability (CPU Jul 2021)

mysql: InnoDB unspecified vulnerability (CPU Apr 2022)

mysql: C API unspecified vulnerability (CPU Oct 2022)

mysql: MyISAM unspecified vulnerability (CPU Jul 2018)

mysql: C API unspecified vulnerability (CPU Apr 2020)

mysql: C API unspecified vulnerability (CPU Jan 2021)

mysql: Server: Options unspecified vulnerability (CPU Jul 2018)