PT-2022-6936 · Mariadb+9 · Mariadb Server+9

Published

2022-03-16

Updated

2025-06-10

CVE-2022-27451

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions MariaDB Server versions 10.9 and below

Description The issue is related to a segmentation fault in the sql/field conv.cc component of the MariaDB Server. This fault can be exploited by a remote attacker to cause a denial of service. The vulnerability is associated with errors in the code validation system.

Recommendations For MariaDB Server versions 10.9 and below, consider disabling the sql/field conv.cc component as a temporary workaround until a patch is available. Restrict access to the affected component to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1173

Related Identifiers

ALSA-2022:5826

ALSA-2022:5948

ALT-PU-2022-2360

ALT-PU-2022-2446

ALT-PU-2023-1583

ALT-PU-2023-6462

AZL-9414

BDU:2023-05683

BIT-MARIADB-2022-27451

BIT-MARIADB-MIN-2022-27451

BIT-MYSQL-CLIENT-2022-27451

CESA-2022_5826

CVE-2022-27451

OESA-2022-1681

OPENSUSE-SU-2022_2003-1

OPENSUSE-SU-2022_2561-1

RHSA-2022:5759

RHSA-2022:5826

RHSA-2022:5948

RHSA-2022_5826

RHSA-2022_5948

RHSA-2023:6821

RLSA-2022:5826

RLSA-2022:5948

ROSA-SA-2023-2254

SUSE-RU-2023:3956-1

SUSE-RU-2023:4991-1

SUSE-SU-2022:2003-1

SUSE-SU-2022:2189-1

SUSE-SU-2022:2561-1

USN-5739-1

USN-5739-2

Affected Products

Alt Linux

Almalinux

Centos

Linuxmint

Mariadb Server

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

PT-2022-6936 · Mariadb+9 · Mariadb Server+9

CVE-2022-27451

Weakness Enumeration

Related Identifiers

Affected Products

References · 649