Zero-friction vulnerability management platform

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

MariaDB DoS Vulnerability (MDEV-28095) - Linux

Information

Severity

Severity

Medium

Family

Family

Databases

CVSSv2 Base

CVSSv2 Base

5.0

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Solution Type

Solution Type

Vendor Patch

Created

Created

6 months ago

Modified

Modified

1 month ago

Summary

MariaDB is prone to a denial of service (DoS) vulnerability.

Insight

Insight

There is an assertion failure in MariaDB Server via 'node->pcur->rel_pos == BTR_PCUR_ON' at /row/row0mysql.cc.

Affected Software

Affected Software

MariaDB version 10.3.x through 10.3.34, 10.4.x through 10.4.24, 10.5.x through 10.5.15, 10.6.x through 10.6.7, 10.7.x through 10.7.3.

Detection Method

Detection Method

Checks if a vulnerable version is present on the target host.

Solution

Solution

Update to version 10.3.35, 10.4.25, 10.5.16, 10.6.8, 10.7.4 or later.

Common Vulnerabilities and Exposures (CVE)