CVE-2023-52968

Name
CVE-2023-52968
Description
MariaDB Server 10.4 before 10.4.33, 10.5 before 10.5.24, 10.6 before 10.6.17, 10.7 through 10.11 before 10.11.7, 11.0 before 11.0.5, and 11.1 before 11.1.4 calls fix_fields_if_needed under mysql_derived_prepare when derived is not yet prepared, leading to a find_field_in_table crash.
NVD Severity
medium
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
cve@mitre.org https://jira.mariadb.org/browse/MDEV-32082

Match rules

CPE URI Source package Min version Max version
mariadb >= 10.4 < 10.4.33
mariadb >= 10.5 < 10.5.24
mariadb >= 10.6 < 10.6.17
mariadb >= 10.7 < 10.11.7
mariadb >= 11.0 < 11.0.5
mariadb >= 11.1 < 11.1.4

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
mariadb edge-main 10.11.6-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
mariadb edge-main 10.6.12-r2 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
mariadb edge-main 10.6.12-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
mariadb edge-main 10.6.11-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
mariadb edge-main 10.6.10-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
mariadb edge-main 10.6.9-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
mariadb edge-main 10.6.8-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
mariadb edge-main 10.6.8-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
mariadb edge-main 10.6.7-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
mariadb edge-main 10.6.4-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
mariadb edge-main 10.5.11-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
mariadb edge-main 10.5.9-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
mariadb edge-main 10.5.8-r0 None possibly vulnerable
mariadb edge-main 10.5.6-r0 None possibly vulnerable
mariadb edge-main 10.4.13-r0 None possibly vulnerable
mariadb edge-main 10.4.12-r0 None possibly vulnerable
mariadb edge-main 10.4.10-r0 None possibly vulnerable
mariadb edge-main 10.4.7-r0 None possibly vulnerable
mariadb 3.22-main 10.11.6-r0 None possibly vulnerable
mariadb 3.22-main 10.6.9-r0 None possibly vulnerable
mariadb 3.22-main 10.6.8-r0 None possibly vulnerable
mariadb 3.22-main 10.6.7-r0 None possibly vulnerable
mariadb 3.22-main 10.6.4-r0 None possibly vulnerable
mariadb 3.22-main 10.5.11-r0 None possibly vulnerable
mariadb 3.22-main 10.5.9-r0 None possibly vulnerable
mariadb 3.22-main 10.5.8-r0 None possibly vulnerable
mariadb 3.22-main 10.5.6-r0 None possibly vulnerable
mariadb 3.22-main 10.4.13-r0 None possibly vulnerable
mariadb 3.22-main 10.4.12-r0 None possibly vulnerable
mariadb 3.22-main 10.4.10-r0 None possibly vulnerable
mariadb 3.22-main 10.4.7-r0 None possibly vulnerable
mariadb 3.21-main 10.11.6-r0 None possibly vulnerable
mariadb 3.21-main 10.6.9-r0 None possibly vulnerable
mariadb 3.21-main 10.6.8-r0 None possibly vulnerable
mariadb 3.21-main 10.6.7-r0 None possibly vulnerable
mariadb 3.21-main 10.6.4-r0 None possibly vulnerable
mariadb 3.21-main 10.5.11-r0 None possibly vulnerable
mariadb 3.21-main 10.5.9-r0 None possibly vulnerable
mariadb 3.21-main 10.5.8-r0 None possibly vulnerable
mariadb 3.21-main 10.5.6-r0 None possibly vulnerable
mariadb 3.21-main 10.4.13-r0 None possibly vulnerable
mariadb 3.21-main 10.4.12-r0 None possibly vulnerable
mariadb 3.21-main 10.4.10-r0 None possibly vulnerable
mariadb 3.21-main 10.4.7-r0 None possibly vulnerable
mariadb 3.20-main 10.11.6-r0 None possibly vulnerable
mariadb 3.20-main 10.6.9-r0 None possibly vulnerable
mariadb 3.20-main 10.6.8-r0 None possibly vulnerable
mariadb 3.20-main 10.6.7-r0 None possibly vulnerable
mariadb 3.20-main 10.6.4-r0 None possibly vulnerable
mariadb 3.20-main 10.5.11-r0 None possibly vulnerable
mariadb 3.20-main 10.5.9-r0 None possibly vulnerable
mariadb 3.20-main 10.5.8-r0 None possibly vulnerable
mariadb 3.20-main 10.5.6-r0 None possibly vulnerable
mariadb 3.20-main 10.4.13-r0 None possibly vulnerable
mariadb 3.20-main 10.4.12-r0 None possibly vulnerable
mariadb 3.20-main 10.4.10-r0 None possibly vulnerable
mariadb 3.20-main 10.4.7-r0 None possibly vulnerable
mariadb 3.19-main 10.11.6-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
mariadb 3.19-main 10.6.9-r0 None possibly vulnerable
mariadb 3.19-main 10.6.8-r0 None possibly vulnerable
mariadb 3.19-main 10.6.7-r0 None possibly vulnerable
mariadb 3.19-main 10.6.4-r0 None possibly vulnerable
mariadb 3.19-main 10.5.11-r0 None possibly vulnerable
mariadb 3.19-main 10.5.9-r0 None possibly vulnerable
mariadb 3.19-main 10.5.8-r0 None possibly vulnerable
mariadb 3.19-main 10.5.6-r0 None possibly vulnerable
mariadb 3.19-main 10.4.13-r0 None possibly vulnerable
mariadb 3.19-main 10.4.12-r0 None possibly vulnerable
mariadb 3.19-main 10.4.10-r0 None possibly vulnerable
mariadb 3.19-main 10.4.7-r0 None possibly vulnerable