Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.35 and prior and 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).
{ "vanir_signatures": [ { "id": "CVE-2021-35604-0f0e4c3d", "source": "https://github.com/mariadb/server/commit/561b6c7e513abc4ceba263252b519bf715ce80f4", "deprecated": false, "signature_type": "Line", "target": { "file": "sql/sp_head.cc" }, "signature_version": "v1", "digest": { "line_hashes": [ "131649957694533731721940309055820975752", "249452647439853322414702137565205958351", "201969777012246482841882403852745931746", "95578070551738783324854304889376330162", "249398730562238721197312579126910521732", "272906839712165971131454335608419438521", "107318663712936600961191413243544821067", "180839139384475678538465324643300020059", "282394023504767334221966027397455256851" ], "threshold": 0.9 } }, { "id": "CVE-2021-35604-a5b111ca", "source": "https://github.com/mariadb/server/commit/561b6c7e513abc4ceba263252b519bf715ce80f4", "deprecated": false, "signature_type": "Line", "target": { "file": "sql/sql_class.h" }, "signature_version": "v1", "digest": { "line_hashes": [ "246197311705367672488779414942418338437", "276461508094209904860358154457724219596", "119856287420192600807656416768471292892", "307523178086602816378726753514303591471" ], "threshold": 0.9 } }, { "id": "CVE-2021-35604-c0b6a67c", "source": "https://github.com/mariadb/server/commit/561b6c7e513abc4ceba263252b519bf715ce80f4", "deprecated": false, "signature_type": "Function", "target": { "file": "sql/log.cc", "function": "trans_cannot_safely_rollback" }, "signature_version": "v1", "digest": { "function_hash": "313645379892638120418940088368384842330", "length": 526.0 } }, { "id": "CVE-2021-35604-c2087e13", "source": "https://github.com/mariadb/server/commit/561b6c7e513abc4ceba263252b519bf715ce80f4", "deprecated": false, "signature_type": "Function", "target": { "file": "sql/log.cc", "function": "MYSQL_BIN_LOG::write" }, "signature_version": "v1", "digest": { "function_hash": "58969679078610265830587969385269203468", "length": 5738.0 } }, { "id": "CVE-2021-35604-c7e73326", "source": "https://github.com/mariadb/server/commit/561b6c7e513abc4ceba263252b519bf715ce80f4", "deprecated": false, "signature_type": "Function", "target": { "file": "sql/log.cc", "function": "binlog_rollback" }, "signature_version": "v1", "digest": { "function_hash": "306699274100027957454330329145370130558", "length": 1646.0 } }, { "id": "CVE-2021-35604-cbcd0de0", "source": "https://github.com/mariadb/server/commit/561b6c7e513abc4ceba263252b519bf715ce80f4", "deprecated": false, "signature_type": "Line", "target": { "file": "sql/log.cc" }, "signature_version": "v1", "digest": { "line_hashes": [ "37241440461655139304666183504430673984", "321123901233127987586838407173769763021", "72261390377549520472738172439120219059", "177685578562853608336609164621767055897", "89819371651002091070891492658372534238", "51099385615472244965869900895991310181", "46580225994766933062920841006192426125", "315917086551178982883049352244998712855", "151578589657138643687922568393137771305", "17554905964382256978464037543366371516", "44471072352567830517014260687216170718", "24734019721218526304965298857312980362", "170961031791040395953313676921959415915", "270863138330118960816828040809003942807", "193741668719766893391486278801760873722", "187930135527712657567073811467820013048", "463263057525947197303571514490382636", "339713228808563234771781256013265010488", "60867587337001395239385720816441536057", "201702182182638939619765504430616936017", "57432871140975116606615382999074109620", "84713255884193508387326659336658799628", "26176627625780710469062407865406490363", "43796184043138950845306782231229762899", "324404121552377421361400005592716783209", "327933765027016333514108949053193264778", "64468012293600814982757536651285167827", "7202594327949745606575738191994274437", "262509239196084693497735668412073064246", "337977078646117299838774945463804836390", "10862040297338291254194597838720262756", "83515971079454692103282106460082729171", "189738111660857520124962685258236418556", "32778699285218945562928993184558074443", "218701964979892061313721302653462012734", "187533463339481117482532077546372282049", "202341581865934325003292198703136040956", "155258852623302621764107560349238231581", "159919742848761288642405190297761552689", "147668741816814608585313009494181079624", "218818688557001123571703121311150830495", "148772925594895409927511713164729652512", "95985790907239484288997369415539433967", "255840666226744218838219627455521697435", "255600561411523879536850015147493893481", "27747137695801633233169226083338797085" ], "threshold": 0.9 } }, { "id": "CVE-2021-35604-cd9394d7", "source": "https://github.com/mariadb/server/commit/561b6c7e513abc4ceba263252b519bf715ce80f4", "deprecated": false, "signature_type": "Line", "target": { "file": "sql/handler.h" }, "signature_version": "v1", "digest": { "line_hashes": [ "119521046618748345254444704918727070434", "200452323826260590731762179699296029024", "251509020612362925913253356211500341353", "261751524541214367584170806104141027470", "201306130400997636080714619460096506715", "35155932094167429544231535939915658820" ], "threshold": 0.9 } }, { "id": "CVE-2021-35604-ed8021c5", "source": "https://github.com/mariadb/server/commit/561b6c7e513abc4ceba263252b519bf715ce80f4", "deprecated": false, "signature_type": "Function", "target": { "file": "sql/sp_head.cc", "function": "sp_lex_keeper::reset_lex_and_exec_core" }, "signature_version": "v1", "digest": { "function_hash": "336328390458211521927718962871514707351", "length": 2658.0 } } ] }