CRITICAL9.8CVE-2016-9843The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving bi… from 0, < 10.3.11-r0
from 0, < 5.5.51-r0
from 0, < 10.3.25-r0
HIGH8.8sql/event_data_objects.cc in MariaDB before 10.1.30 and 10.2.x before 10.2.10 and Percona XtraDB Cluster before 5.6.37-26.21-3 and 5.7.x be…
from 0, < 10.1.32-r0
HIGH8.1mariadb-10.0 - security update
from 0, < 5.5.51-r0
HIGH8.0MariaDB server is a community developed fork of MySQL server.
from 0, < 10.11.18-r0
HIGH8.0MariaDB server is a community developed fork of MySQL server.
from 0, < 10.11.18-r0
HIGH8.0MariaDB server is a community developed fork of MySQL server.
from 0, < 10.11.17-r0
HIGH7.8MariaDB CONNECT Storage Engine Heap-based Buffer Overflow Privilege Escalation Vulnerability.
from 0, < 10.4.24-r0
HIGH7.8MariaDB CONNECT Storage Engine Format String Privilege Escalation Vulnerability.
from 0, < 10.4.24-r0
HIGH7.8MariaDB CONNECT Storage Engine Use-After-Free Privilege Escalation Vulnerability.
from 0, < 10.4.24-r0
HIGH7.8MariaDB CONNECT Storage Engine Stack-based Buffer Overflow Privilege Escalation Vulnerability.
from 0, < 10.4.24-r0
HIGH7.7mysql-5.5 - security update
from 0, < 10.2.15-r0
HIGH7.7Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer).
from 0, < 10.1.23-r0
HIGH7.7Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML).
from 0, < 10.1.23-r0
HIGH7.5MariaDB v10.7 was discovered to contain an use-after-poison in in __interceptor_memset at /libsanitizer/sanitizer_common/sanitizer_common_i…
from 0, < 10.5.17-r0
HIGH7.5MariaDB v10.5 to v10.7 was discovered to contain a segmentation fault via the component st_select_lex_unit::exclude_level.
from 0, < 10.5.17-r0
HIGH7.5MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component sub_select.
from 0, < 10.5.17-r0
HIGH7.5MariaDB v10.5 to v10.7 was discovered to contain an assertion failure at table->get_ref_count() == 0 in dict0dict.cc.
from 0, < 10.5.17-r0
HIGH7.5MariaDB v10.4 to v10.7 was discovered to contain an use-after-poison in prepare_inplace_add_virtual at /storage/innobase/handler/handler0al…
from 0, < 10.5.17-r0
HIGH7.5Rejected reason: DO NOT USE THIS CANDIDATE NUMBER.
from 0, < 10.4.25-r0
HIGH7.5MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component my_mb_wc_latin1 at /strings/ctype-latin1.c.
from 0, < 10.4.25-r0
HIGH7.5MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component VDec::VDec at /sql/sql_type.cc.
from 0, < 10.4.25-r0
HIGH7.5MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component my_wildcmp_8bit_impl at /strings/ctype-simple…
from 0, < 10.4.25-r0
HIGH7.5MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_cmpfunc.cc.
from 0, < 10.4.25-r0
HIGH7.5MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/field_conv.cc.
from 0, < 10.4.25-r0
HIGH7.5MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_func.cc:148.
from 0, < 10.4.25-r0
HIGH7.5There is an Assertion failure in MariaDB Server v10.9 and below via 'node->pcur->rel_pos == BTR_PCUR_ON' at /row/row0mysql.cc.
from 0, < 10.4.25-r0
HIGH7.5MariaDB Server v10.9 and below was discovered to contain a use-after-free via the component Binary_string::free_buffer() at /sql/sql_string…
from 0, < 10.4.25-r0
HIGH7.5MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_cmpfunc.h.
from 0, < 10.4.25-r0
HIGH7.5MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/sql_window.cc.
from 0, < 10.4.25-r0
HIGH7.5MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_subselect.cc.
from 0, < 10.4.25-r0
HIGH7.5MariaDB Server v10.7 and below was discovered to contain a global buffer overflow in the component decimal_bin_size, which is exploited via…
from 0, < 10.4.25-r0
HIGH7.5MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component sql/sql_class.cc.
from 0, < 10.4.25-r0
HIGH7.5An issue in the component Used_tables_and_const_cache::used_tables_and_const_cache_join of MariaDB Server v10.7 and below was discovered to…
from 0, < 10.6.7-r0
HIGH7.5An issue in the component Item_subselect::init_expr_cache_tracker of MariaDB Server v10.6 and below was discovered to allow attackers to ca…
from 0, < 10.4.25-r0
HIGH7.5MariaDB Server v10.6 and below was discovered to contain an use-after-free in the component my_strcasecmp_8bit, which is exploited via spec…
from 0, < 10.4.25-r0
HIGH7.5MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component Item_field::used_tables/update_depend_map_f…
from 0, < 10.4.25-r0
HIGH7.5An issue in the component Field::set_default of MariaDB Server v10.6 and below was discovered to allow attackers to cause a Denial of Servi…
from 0, < 10.4.25-r0
HIGH7.5An issue in the component my_decimal::operator= of MariaDB Server v10.6.3 and below was discovered to allow attackers to cause a Denial of…
from 0, < 10.4.25-r0
HIGH7.5An issue in the component Arg_comparator::compare_real_fixed of MariaDB Server v10.6.2 and below was discovered to allow attackers to cause…
from 0, < 10.4.25-r0
HIGH7.5An issue in the component Create_tmp_table::finalize of MariaDB Server v10.7 and below was discovered to allow attackers to cause a Denial…
from 0, < 10.4.25-r0
HIGH7.5MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component Item_func_in::cleanup(), which is exploited v…
from 0, < 10.4.25-r0
HIGH7.5MariaDB Server v10.6.5 and below was discovered to contain an use-after-free in the component Item_args::walk_arg, which is exploited via s…
from 0, < 10.4.25-r0
HIGH7.5zlib - security update
from 0, < 10.5.17-r0
HIGH7.5mysql-5.5 - security update
from 0, < 10.1.22-r0
HIGH7.2mariadb-10.1 - security update
from 0, < 10.3.28-r0
HIGH7.1Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB).
from 0, < 10.1.37-r0
HIGH7.1mysql-5.5 - security update
from 0, < 10.1.32-r0
HIGH7.0With MariaDB running on Windows, when local clients connect to the server over named pipes, it's possible for an unprivileged user with an…
from 0, < 10.3.27-r0
HIGH7.0mariadb-10.0 - security update
from 0, < 10.1.21-r0
MEDIUM6.7Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging).
from 0, < 10.1.21-r0
MEDIUM6.5mariadb-10.3 - security update
from 0, < 10.6.13-r0
MEDIUM6.5mariadb-10.1 - security update
from 0, < 10.3.27-r0
MEDIUM6.5Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
from 0, < 10.3.20-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser).
from 0, < 10.3.17-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: XML).
from 0, < 10.3.17-r0
MEDIUM6.5mariadb-10.0 - security update
from 0, < 10.1.38-r0
MEDIUM6.5mariadb-10.0 - security update
from 0, < 10.3.11-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB).
from 0, < 10.3.11-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB).
from 0, < 10.3.11-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB).
from 0, < 10.1.37-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB).
from 0, < 10.2.15-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL).
from 0, < 10.2.15-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB).
from 0, < 10.2.15-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB).
from 0, < 10.2.15-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer).
from 0, < 10.1.32-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer).
from 0, < 10.1.32-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer).
from 0, < 10.1.32-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL).
from 0, < 10.1.32-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB).
from 0, < 10.1.32-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer).
from 0, < 10.1.32-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer).
from 0, < 10.1.23-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL).
from 0, < 10.1.21-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB).
from 0, < 10.1.21-r0
MEDIUM6.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML).
from 0, < 10.1.21-r0
MEDIUM6.5mysql-5.5 - security update
from 0, < 10.1.21-r0
MEDIUM6.5Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x…
from 0, < 5.5.51-r0
MEDIUM6.3MariaDB server is a community developed fork of MySQL server.
from 0, < 10.11.17-r0
MEDIUM6.3Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging).
from 0, < 10.1.21-r0
MEDIUM5.9Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).
from 0, < 10.4.21-r0
MEDIUM5.9Vulnerability in the MySQL Client product of Oracle MySQL (component: C API).
from 0, < 10.3.22-r0
MEDIUM5.9Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs).
from 0, < 10.2.15-r0
MEDIUM5.6Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging).
from 0, < 10.1.21-r0
MEDIUM5.5MariaDB Server before 10.7 is vulnerable to Denial of Service.
from 0, < 10.6.7-r0
MEDIUM5.5MariaDB Server before 10.7 is vulnerable to Denial of Service.
from 0, < 10.6.7-r0
MEDIUM5.5MariaDB Server before 10.7 is vulnerable to Denial of Service.
from 0, < 10.6.7-r0
MEDIUM5.5MariaDB Server before 10.7 is vulnerable to Denial of Service.
from 0, < 10.6.7-r0
MEDIUM5.5MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements that improperly interact with storage-engine…
from 0, < 10.4.24-r0
MEDIUM5.5MariaDB before 10.6.5 has a sql_lex.cc integer overflow, leading to an application crash.
from 0, < 10.6.7-r0
MEDIUM5.5MariaDB through 10.5.9 allows a sql_parse.cc application crash because of incorrect used_tables expectations.
from 0, < 10.4.24-r0
MEDIUM5.5MariaDB through 10.5.9 allows an application crash in sub_select_postjoin_aggr for a NULL value of aggr.
from 0, < 10.4.24-r0
MEDIUM5.5MariaDB through 10.5.13 allows a ha_maria::extra application crash via certain SELECT statements.
from 0, < 10.4.24-r0
MEDIUM5.5MariaDB through 10.5.9 allows a set_var.cc application crash via certain uses of an UPDATE statement in conjunction with a nested subquery.
from 0, < 10.6.7-r0
MEDIUM5.5MariaDB through 10.5.9 allows an application crash in find_field_in_tables and find_order_in_list via an unused common table expression (CT…
from 0, < 10.4.24-r0
MEDIUM5.5MariaDB before 10.7.2 allows an application crash because it does not recognize that SELECT_LEX::nest_level is local to each VIEW.
from 0, < 10.4.24-r0
MEDIUM5.5Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).
from 0, < 10.4.22-r0
MEDIUM5.5Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).
from 0, < 10.3.23-r0
MEDIUM5.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB).
from 0, < 10.3.17-r0
MEDIUM5.5Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB).
from 0, < 10.3.11-r0