CVE-2022-47015
- Source
- https://cve.org/CVERecord?id=CVE-2022-47015
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-47015.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-47015
- Aliases
- Downstream
- Related
- Published
- 2023-01-20T19:15:17.443Z
- Modified
- 2026-03-13T14:56:23.767827Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
MariaDB Server before 10.3.34 thru 10.9.3 is vulnerable to Denial of Service. It is possible for function spiderdbmbase::print_warnings to dereference a null pointer.
- References
-
- https://lists.debian.org/debian-lts-announce/2023/06/msg00005.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O22PO3Q6TRSNJI2A2WTJH3VVCHEKBF6C/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SUQ33SPQCZQD63TWAM3XKFNVNFRGPFYU/
- https://security.netapp.com/advisory/ntap-20230309-0009/
- https://github.com/MariaDB/server/commit/be0a46b3d52b58956fd0d47d040b9f4514406954
Affected packages
Git / github.com/mariadb/server
Affected ranges
- Type
- GIT
- Repo
- https://github.com/mariadb/server
- Events
-
IntroducedFixedIntroducedFixedIntroducedFixedIntroducedFixedFixed
- Database specific
{ "versions": [ { "introduced": "10.3.0" }, { "fixed": "10.3.39" }, { "introduced": "10.4.0" }, { "fixed": "10.4.29" }, { "introduced": "10.5.0" }, { "fixed": "10.5.20" }, { "introduced": "10.6.0" }, { "fixed": "10.6.13" } ] }
Affected versions
mariadb-10.*
mariadb-10.0.31
mariadb-10.0.32
mariadb-10.0.33
mariadb-10.0.34
mariadb-10.0.35
mariadb-10.0.36
mariadb-10.0.37
mariadb-10.0.38
mariadb-10.1.23
mariadb-10.1.24
mariadb-10.1.25
mariadb-10.1.26
mariadb-10.1.27
mariadb-10.1.28
mariadb-10.1.29
mariadb-10.1.30
mariadb-10.1.31
mariadb-10.1.32
mariadb-10.1.33
mariadb-10.1.34
mariadb-10.1.35
mariadb-10.1.36
mariadb-10.1.37
mariadb-10.1.38
mariadb-10.1.39
mariadb-10.1.40
mariadb-10.1.41
mariadb-10.1.42
mariadb-10.1.43
mariadb-10.1.44
mariadb-10.1.45
mariadb-10.1.46
mariadb-10.1.47
mariadb-10.2.10
mariadb-10.2.11
mariadb-10.2.12
mariadb-10.2.13
mariadb-10.2.14
mariadb-10.2.15
mariadb-10.2.16
mariadb-10.2.17
mariadb-10.2.18
mariadb-10.2.19
mariadb-10.2.20
mariadb-10.2.21
mariadb-10.2.22
mariadb-10.2.23
mariadb-10.2.24
mariadb-10.2.25
mariadb-10.2.26
mariadb-10.2.27
mariadb-10.2.28
mariadb-10.2.29
mariadb-10.2.30
mariadb-10.2.31
mariadb-10.2.32
mariadb-10.2.33
mariadb-10.2.34
mariadb-10.2.35
mariadb-10.2.36
mariadb-10.2.37
mariadb-10.2.38
mariadb-10.2.39
mariadb-10.2.40
mariadb-10.2.41
mariadb-10.2.42
mariadb-10.2.43
mariadb-10.2.6
mariadb-10.2.7
mariadb-10.2.8
mariadb-10.2.9
mariadb-10.3.0
mariadb-10.3.1
mariadb-10.3.10
mariadb-10.3.11
mariadb-10.3.12
mariadb-10.3.13
mariadb-10.3.14
mariadb-10.3.15
mariadb-10.3.16
mariadb-10.3.17
mariadb-10.3.18
mariadb-10.3.19
mariadb-10.3.2
mariadb-10.3.20
mariadb-10.3.21
mariadb-10.3.22
mariadb-10.3.23
mariadb-10.3.24
mariadb-10.3.25
mariadb-10.3.26
mariadb-10.3.27
mariadb-10.3.28
mariadb-10.3.29
mariadb-10.3.3
mariadb-10.3.30
mariadb-10.3.31
mariadb-10.3.32
mariadb-10.3.33
mariadb-10.3.34
mariadb-10.3.35
mariadb-10.3.36
mariadb-10.3.37
mariadb-10.3.38
mariadb-10.3.4
mariadb-10.3.5
mariadb-10.3.6
mariadb-10.3.7
mariadb-10.3.8
mariadb-10.3.9
mariadb-5.*
mariadb-5.5.55
mariadb-5.5.56
mariadb-5.5.57
mariadb-5.5.58
mariadb-5.5.59
mariadb-5.5.60
mariadb-5.5.61
mariadb-5.5.62
mariadb-5.5.63
mariadb-5.5.64
mariadb-5.5.65
mariadb-5.5.66
mariadb-5.5.67
mariadb-5.5.68
mariadb-galera-10.*
mariadb-galera-10.0.30
mariadb-galera-10.0.31
mariadb-galera-10.0.32
mariadb-galera-10.0.33
mariadb-galera-10.0.34
mariadb-galera-10.0.35
mariadb-galera-10.0.36
mariadb-galera-10.0.37
mariadb-galera-5.*
mariadb-galera-5.5.52
mariadb-galera-5.5.53
mariadb-galera-5.5.54
mariadb-galera-5.5.55
mariadb-galera-5.5.56
mariadb-galera-5.5.57
mariadb-galera-5.5.58
mariadb-galera-5.5.59
mariadb-galera-5.5.60
mariadb-galera-5.5.61
mariadb-galera-5.5.62
mysql-5.*
mysql-5.5.55
mysql-5.5.56
mysql-5.5.57
mysql-5.5.58
mysql-5.5.59
mysql-5.5.60
mysql-5.5.61
mysql-5.5.62
Database specific
unresolved_ranges
[
{
"events": [
{
"introduced": "10.8.0"
},
{
"fixed": "10.8.8"
}
]
},
{
"events": [
{
"introduced": "10.9.0"
},
{
"fixed": "10.9.6"
}
]
},
{
"events": [
{
"introduced": "10.10.0"
},
{
"fixed": "10.10.4"
}
]
},
{
"events": [
{
"introduced": "10.11.0"
},
{
"fixed": "10.11.3"
}
]
}
]
vanir_signatures
[
{
"signature_version": "v1",
"target": {
"file": "sql/field.cc"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"312658079401165488443406098196212865955",
"73084194139858368013323960861700526506",
"45551148580383206693784356496162843061",
"297511518443520928247864669446720922934"
]
},
"source": "https://github.com/mariadb/server/commit/a24f2bb50ba4a0dd4127455f7fcdfed584937f36",
"signature_type": "Line",
"id": "CVE-2022-47015-15e19535",
"deprecated": false
},
{
"signature_version": "v1",
"target": {
"file": "storage/spider/spd_db_mysql.h"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"262183601554466879303542139680097441797",
"219460772531774330687168802094553720875",
"180516640286265012657797429331672688277",
"259411688451775829275281600708079025690",
"308105200068685041030647761518518488227",
"336043570082798588763913224876227651988"
]
},
"source": "https://github.com/mariadb/server/commit/be0a46b3d52b58956fd0d47d040b9f4514406954",
"signature_type": "Line",
"id": "CVE-2022-47015-2623312f",
"deprecated": false
},
{
"signature_version": "v1",
"target": {
"function": "check_join_cache_usage",
"file": "sql/sql_select.cc"
},
"digest": {
"length": 4411.0,
"function_hash": "29620726882374727492994359726732491059"
},
"source": "https://github.com/mariadb/server/commit/2594da7a33580bf03590502a011679c878487d0c",
"signature_type": "Function",
"id": "CVE-2022-47015-5d09b33c",
"deprecated": false
},
{
"signature_version": "v1",
"target": {
"function": "spider_db_mbase::print_warnings",
"file": "storage/spider/spd_db_mysql.cc"
},
"digest": {
"length": 1295.0,
"function_hash": "80176887243444836381511454193797483904"
},
"source": "https://github.com/mariadb/server/commit/be0a46b3d52b58956fd0d47d040b9f4514406954",
"signature_type": "Function",
"id": "CVE-2022-47015-64f1ddce",
"deprecated": false
},
{
"signature_version": "v1",
"target": {
"file": "sql/sql_select.cc"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"118189557732478373997286318020867696164",
"155889006750705725047854074464264916337",
"315138518959075738840878797839293231705",
"126636845567606737288470163038273948620"
]
},
"source": "https://github.com/mariadb/server/commit/2594da7a33580bf03590502a011679c878487d0c",
"signature_type": "Line",
"id": "CVE-2022-47015-d28cfc2b",
"deprecated": false
},
{
"signature_version": "v1",
"target": {
"file": "storage/spider/spd_db_mysql.cc"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"254192567725623803008452046725777241988",
"319507803863195792634278904037447303399",
"141002786193143967955474157894371433373",
"119698504016579500124273537942971179329",
"41758622846282241057034844141729027389",
"127046117630619674679145162654344087429",
"9827524947422186008714606351842408991",
"274357843765213334694652004279443393436",
"251544921041534108193378618204000635506",
"310310547847029634194500366985806513914",
"102620932679455695300785552023806141463",
"19177429045017051514589764559449097045",
"30588458219454501670215019527577346619",
"33872012908832064410468094426380856177",
"157491852238909173588842361506269237735",
"64362370982600800860058898856162873790",
"44627775822241874809299137942637227990",
"333972606457052682051807701440943671070",
"314456323943297073334398128115641035994",
"321583308976869202719675587584703687069",
"128568161881214676930310378739565848615",
"294303660624473172930612006348318247644",
"322793817747552194949793229423212508916",
"282910123905560167444252760160972945736",
"116477730958547172637296691568680526459",
"229723689330028387258787286753565275667",
"32778791601020353828709323938623316392",
"115946028600914397510074276633458560214",
"193359386311141179742161875535107239682",
"212328063663317545379023527414554797706",
"119669661319323164289397667201505969238",
"42005863716333758012841701291591401371",
"220581082277654824416299837255868258588",
"85164737961231038176058362241457429460",
"194600565738041931503434215635297631942",
"146393969496086621022703112500570395094",
"34445869217857271487296990409456660560",
"211992086002784646900754793609472939129",
"269300072214606178217833324854666063346",
"15109365170121484699198531554468426183",
"114580640541125972156482976944330118628",
"310539122930817265597320394720389033609",
"172775085809817710686714269581698627710",
"80739628491450587265267284322246220853",
"152952074923147889705102893579827824474",
"32775386887145961760668566212779757486",
"20383471864065409997022935345527068410",
"287019998809978238663923589986652918097",
"105335829427684995434900375402824007037",
"34407834833397897341595044210852560882",
"226535631213177732171495805933097074049",
"310038883619155113932846514889570753779",
"309788940498478262889396841027022211380",
"37443091159032879033940282057976618582",
"147497497876416170177139118820927156099",
"12006693355803981830882143522105480378",
"100821305716773024938637942878776333387",
"132381839429590287231718327283535754919",
"211899479910430766449293520818908135613",
"247506021959958802282277195862875121216",
"86783724728335647922456817887706627868"
]
},
"source": "https://github.com/mariadb/server/commit/be0a46b3d52b58956fd0d47d040b9f4514406954",
"signature_type": "Line",
"id": "CVE-2022-47015-d8b1c05f",
"deprecated": false
}
]
source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-47015.json"