Pingcap · Tidb · CVE-2024-37820
**Name of the Vulnerable Software and Affected Versions**
PingCAP TiDB versions prior to 8.2.0
**Description**
A nil pointer dereference in PingCAP TiDB allows attackers to crash the application via `expression.inferCollation`.
**Recommendations**
For versions prior to 8.2.0, update to version 8.2.0 or later to resolve the issue.
As a temporary workaround, consider restricting access to the `expression.inferCollation` function until a patch is available.