CVE-2021-46665

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2021-46665
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-46665.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2021-46665
Aliases
Downstream
Related
Published
2022-02-01T02:15:06.977Z
Modified
2026-04-16T00:03:57.660910897Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

MariaDB through 10.5.9 allows a sqlparse.cc application crash because of incorrect usedtables expectations.

Database specific 
{
    "unresolved_ranges": [
        {
            "extracted_events": [
                {
                    "last_affected": "34"
                }
            ],
            "cpe": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
            "source": "CPE_FIELD"
        },
        {
            "source": "CPE_FIELD",
            "cpe": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
            "extracted_events": [
                {
                    "last_affected": "35"
                }
            ]
        },
        {
            "extracted_events": [
                {
                    "last_affected": "36"
                }
            ],
            "cpe": "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*",
            "source": "CPE_FIELD"
        }
    ]
}
References

Affected packages

Git / github.com/mariadb/server

Affected ranges

Type
GIT
Repo
https://github.com/mariadb/server
Events
Introduced
9664240c948a92c22ccda0e1f5a420eb776ddcb1
Fixed
3a52569499e2f0c4d1f25db1e81617a9d9755400
Introduced
20ae591abd0bfe1bfaee546989ee163f4ef832b1
Fixed
a36fc80aeb3f835fad02f443d65dc608b74b92d1
Introduced
c761b43451d54eeeecdf3c102906fcce88d4e9d9
Fixed
b4477ae73c836592268f7fb231eeb38a4fa83bb6
Introduced
7c7f9bef28aa566557da31402142f6dd8298ddd2
Fixed
9aa3564e8a06c3d2027fc514213ecf42b049b06e
Introduced
1a647b700f6b72dc97211510a5d0c647d5d3d911
Fixed
e3894f5d397722dd50fb91dbbdbad3aaf017a4b0
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
65f602310c4ea086488bfaa50f36952162541a8c
Database specific 
{
    "extracted_events": [
        {
            "introduced": "10.2.0"
        },
        {
            "fixed": "10.2.43"
        },
        {
            "introduced": "10.3.0"
        },
        {
            "fixed": "10.3.34"
        },
        {
            "introduced": "10.4.0"
        },
        {
            "fixed": "10.4.24"
        },
        {
            "introduced": "10.5.0"
        },
        {
            "fixed": "10.5.15"
        },
        {
            "introduced": "10.6.0"
        },
        {
            "fixed": "10.6.7"
        },
        {
            "introduced": "10.7.0"
        },
        {
            "fixed": "10.7.3"
        }
    ],
    "cpe": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
    "source": "CPE_FIELD"
}

Affected versions

mariadb-10.*
mariadb-10.2.0
mariadb-10.2.1
mariadb-10.2.10
mariadb-10.2.11
mariadb-10.2.12
mariadb-10.2.13
mariadb-10.2.14
mariadb-10.2.15
mariadb-10.2.16
mariadb-10.2.18
mariadb-10.2.19
mariadb-10.2.2
mariadb-10.2.20
mariadb-10.2.21
mariadb-10.2.22
mariadb-10.2.23
mariadb-10.2.24
mariadb-10.2.25
mariadb-10.2.26
mariadb-10.2.27
mariadb-10.2.28
mariadb-10.2.29
mariadb-10.2.30
mariadb-10.2.31
mariadb-10.2.39
mariadb-10.2.40
mariadb-10.2.42
mariadb-10.2.5
mariadb-10.3.0
mariadb-10.3.1
mariadb-10.3.10
mariadb-10.3.12
mariadb-10.3.16
mariadb-10.3.17
mariadb-10.3.18
mariadb-10.3.19
mariadb-10.3.2
mariadb-10.3.20
mariadb-10.3.21
mariadb-10.3.26
mariadb-10.3.30
mariadb-10.3.31
mariadb-10.3.33
mariadb-10.3.4
mariadb-10.3.5
mariadb-10.3.6
mariadb-10.3.7
mariadb-10.4.10
mariadb-10.4.11
mariadb-10.4.20
mariadb-10.4.21
mariadb-10.4.22
mariadb-10.4.23
mariadb-10.4.3
mariadb-10.4.4
mariadb-10.4.5
mariadb-10.4.7
mariadb-10.4.9
mariadb-10.5.0
mariadb-10.5.11
mariadb-10.5.12
mariadb-10.5.13
mariadb-10.5.14
mariadb-10.5.2
mariadb-10.5.4
mariadb-10.6.0
mariadb-10.6.1
mariadb-10.6.2
mariadb-10.6.3
mariadb-10.6.4
mariadb-10.6.5
mariadb-10.6.6
mariadb-10.7.1
mariadb-10.7.2

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-46665.json"
vanir_signatures_modified 
"2026-04-11T17:19:55Z"
vanir_signatures 
[
    {
        "target": {
            "file": "sql/sql_lex.cc"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "98111117393566517679651759304023085372",
                "304938594711446698139907843226650211733",
                "276479549989744167816865099922120078879",
                "270219840002247898028875582953023464708"
            ]
        },
        "deprecated": false,
        "id": "CVE-2021-46665-84206f5b",
        "signature_type": "Line",
        "source": "https://github.com/mariadb/server/commit/3a52569499e2f0c4d1f25db1e81617a9d9755400",
        "signature_version": "v1"
    },
    {
        "target": {
            "file": "sql/sql_lex.cc",
            "function": "st_select_lex::optimize_unflattened_subqueries"
        },
        "id": "CVE-2021-46665-d4dba36e",
        "deprecated": false,
        "source": "https://github.com/mariadb/server/commit/3a52569499e2f0c4d1f25db1e81617a9d9755400",
        "signature_type": "Function",
        "digest": {
            "length": 1922.0,
            "function_hash": "165020614219671822891384418769980927498"
        },
        "signature_version": "v1"
    }
]