Codeas

**Name of the Vulnerable Software and Affected Versions** MariaDB versions 11.4 prior to 11.4.10 MariaDB versions 11.8 prior to 11.8.6 **Description** An authenticated user can cause a server crash due to a buffer overflow in dynamic memory (heap out-of-bounds write) within the `JSON SCHEMA VALID()` function. This issue can be triggered by sending a specially crafted JSON file. Under specific conditions requiring strict control over memory layout, typically only achievable in lab environments, this crash could be leveraged to achieve remote code execution and persistent privilege escalation. **Recommendations** Update to version 11.4.10. Update to version 11.8.6. As a temporary workaround, restrict the use of the `JSON SCHEMA VALID()` function to minimize the risk of exploitation.