OESA-2022-1616
- Source
- https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-1616
- Import Source
- https://repo.openeuler.org/security/data/osv/OESA-2022-1616.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/OESA-2022-1616
- Upstream
- Published
- 2022-04-16T11:03:42Z
- Modified
- 2025-08-12T05:10:58.016425Z
- Summary
- mariadb security update
- Details
-
MariaDB is a community developed fork from MySQL - a multi-user, multi-threaded SQL database server. It is a client/server implementation consisting of a server daemon (mariadbd) and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client programs and utilities.
MariaDB turns data into structured information in a wide array of applications, ranging from banking to websites. It is an enhanced, drop-in replacement for MySQL. MariaDB is used because it is fast, scalable and robust, with a rich ecosystem of storage engines, plugins and many other tools make it very versatile for a wide variety of use cases.
Security Fix(es):
savewindowfunctionvalues in MariaDB before 10.6.3 allows an application crash because of incorrect handling of withwindow_func=True for a subquery.(CVE-2021-46658)
MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements that improperly interact with storage-engine resource limitations for temporary data structures.(CVE-2021-46668)
MariaDB CONNECT Storage Engine Format String Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL queries. The issue results from the lack of proper validation of a user-supplied string before using it as a format specifier. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the service account. Was ZDI-CAN-16193.(CVE-2022-24051)
MariaDB CONNECT Storage Engine Use-After-Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL queries. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the service account. Was ZDI-CAN-16207.(CVE-2022-24050)
MariaDB CONNECT Storage Engine Stack-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL queries. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the service account. Was ZDI-CAN-16191.(CVE-2022-24048)
- Database specific
{ "severity": "High" }- References
-
- https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-1616
- https://nvd.nist.gov/vuln/detail/CVE-2021-46658
- https://nvd.nist.gov/vuln/detail/CVE-2021-46668
- https://nvd.nist.gov/vuln/detail/CVE-2022-24051
- https://nvd.nist.gov/vuln/detail/CVE-2022-24050
- https://nvd.nist.gov/vuln/detail/CVE-2022-24048
Affected packages
openEuler:22.03-LTS / mariadb
Package
- Name
- mariadb
- Purl
- pkg:rpm/openEuler/mariadb&distro=openEuler-22.03-LTS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed10.5.15-2.oe2203
Ecosystem specific
{
"x86_64": [
"mariadb-gssapi-server-10.5.15-2.oe2203.x86_64.rpm",
"mariadb-common-10.5.15-2.oe2203.x86_64.rpm",
"mariadb-backup-10.5.15-2.oe2203.x86_64.rpm",
"mariadb-debugsource-10.5.15-2.oe2203.x86_64.rpm",
"mariadb-debuginfo-10.5.15-2.oe2203.x86_64.rpm",
"mariadb-devel-10.5.15-2.oe2203.x86_64.rpm",
"mariadb-errmsg-10.5.15-2.oe2203.x86_64.rpm",
"mariadb-embedded-10.5.15-2.oe2203.x86_64.rpm",
"mariadb-oqgraph-engine-10.5.15-2.oe2203.x86_64.rpm",
"mariadb-embedded-devel-10.5.15-2.oe2203.x86_64.rpm",
"mariadb-config-10.5.15-2.oe2203.x86_64.rpm",
"mariadb-server-galera-10.5.15-2.oe2203.x86_64.rpm",
"mariadb-server-10.5.15-2.oe2203.x86_64.rpm",
"mariadb-test-10.5.15-2.oe2203.x86_64.rpm",
"mariadb-10.5.15-2.oe2203.x86_64.rpm",
"mariadb-pam-10.5.15-2.oe2203.x86_64.rpm",
"mariadb-server-utils-10.5.15-2.oe2203.x86_64.rpm"
],
"src": [
"mariadb-10.5.15-2.oe2203.src.rpm"
],
"aarch64": [
"mariadb-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-config-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-common-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-embedded-devel-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-test-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-server-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-devel-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-server-galera-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-embedded-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-backup-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-gssapi-server-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-errmsg-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-debugsource-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-debuginfo-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-oqgraph-engine-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-pam-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-rocksdb-engine-10.5.15-2.oe2203.aarch64.rpm",
"mariadb-server-utils-10.5.15-2.oe2203.aarch64.rpm"
]
}