CVE-2021-2011

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2021-2011
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-2011.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2021-2011
Aliases
Downstream
Related
Published
2021-01-20T15:15:45.923Z
Modified
2026-03-14T10:40:11.338906Z
Severity
  • 5.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).

References

Affected packages

Git / github.com/mariadb/server

Affected ranges

Type
GIT
Repo
https://github.com/mariadb/server
Events
Introduced
776555af021e917ce0d6235386b43ae59fdd5161
Fixed
2e5681a450627709512138a7d15b8ee035a29c6a
Introduced
c235de12ae3723b96944337bd89ad9cc87f21d8f
Fixed
1025363a35571d5a0ba7023287104d23c7aa61d5
Introduced
9664240c948a92c22ccda0e1f5a420eb776ddcb1
Fixed
bb045e7931c451b228ffc5bcdb1791a31eb0c852
Database specific 
{
    "versions": [
        {
            "introduced": "10.0.0"
        },
        {
            "fixed": "10.0.35"
        },
        {
            "introduced": "10.1.0"
        },
        {
            "fixed": "10.1.33"
        },
        {
            "introduced": "10.2.0"
        },
        {
            "fixed": "10.2.15"
        }
    ]
}
Type
GIT
Repo
https://github.com/mysql/mysql-server
Events
Introduced
270fd3411e3d671a73ed9725940a30080f59ce6d
Last affected
ee4455a33b10f1b1886044322e4893f587b319ed
Introduced
54df0057e18d8c82c23fbd4e0bf5b5dc2e762955
Fixed
e48d775c6f066add457fa8cfb2ebc4d5ff0c7613
Database specific 
{
    "versions": [
        {
            "introduced": "8.0.0"
        },
        {
            "last_affected": "8.0.22"
        },
        {
            "introduced": "5.5.0"
        },
        {
            "fixed": "5.5.61"
        }
    ]
}

Affected versions

mariadb-10.*
mariadb-10.0.13
mariadb-10.0.14
mariadb-10.0.15
mariadb-10.0.16
mariadb-10.0.17
mariadb-10.0.18
mariadb-10.0.19
mariadb-10.0.20
mariadb-10.0.21
mariadb-10.0.22
mariadb-10.0.23
mariadb-10.0.24
mariadb-10.0.25
mariadb-10.0.26
mariadb-10.0.27
mariadb-10.0.28
mariadb-10.0.29
mariadb-10.0.30
mariadb-10.0.31
mariadb-10.0.32
mariadb-10.0.33
mariadb-10.0.34
mariadb-10.0.35
mariadb-10.1.0
mariadb-5.*
mariadb-5.5.39
mariadb-5.5.40
mariadb-5.5.41
mariadb-5.5.42
mariadb-5.5.43
mariadb-5.5.44
mariadb-5.5.45
mariadb-5.5.46
mariadb-5.5.47
mariadb-5.5.48
mariadb-5.5.49
mariadb-5.5.50
mariadb-5.5.51
mariadb-5.5.52
mariadb-5.5.53
mariadb-5.5.54
mariadb-5.5.55
mariadb-5.5.56
mariadb-5.5.57
mariadb-5.5.58
mariadb-5.5.59
mariadb-5.5.60
mariadb-galera-10.*
mariadb-galera-10.0.10
mariadb-galera-10.0.11
mariadb-galera-10.0.12
mariadb-galera-10.0.13
mariadb-galera-10.0.14
mariadb-galera-10.0.15
mariadb-galera-10.0.16
mariadb-galera-10.0.17
mariadb-galera-10.0.19
mariadb-galera-10.0.20
mariadb-galera-10.0.21
mariadb-galera-10.0.22
mariadb-galera-10.0.23
mariadb-galera-10.0.24
mariadb-galera-10.0.25
mariadb-galera-10.0.26
mariadb-galera-10.0.27
mariadb-galera-10.0.28
mariadb-galera-10.0.29
mariadb-galera-10.0.30
mariadb-galera-10.0.31
mariadb-galera-10.0.32
mariadb-galera-10.0.33
mariadb-galera-10.0.34
mariadb-galera-10.0.7
mariadb-galera-10.0.7a
mariadb-galera-5.*
mariadb-galera-5.5.25
mariadb-galera-5.5.28a
mariadb-galera-5.5.29
mariadb-galera-5.5.32
mariadb-galera-5.5.32a
mariadb-galera-5.5.34
mariadb-galera-5.5.35
mariadb-galera-5.5.36
mariadb-galera-5.5.36a
mariadb-galera-5.5.37
mariadb-galera-5.5.38
mariadb-galera-5.5.39
mariadb-galera-5.5.40
mariadb-galera-5.5.41
mariadb-galera-5.5.42
mariadb-galera-5.5.43
mariadb-galera-5.5.44
mariadb-galera-5.5.45
mariadb-galera-5.5.46
mariadb-galera-5.5.47
mariadb-galera-5.5.48
mariadb-galera-5.5.49
mariadb-galera-5.5.50
mariadb-galera-5.5.51
mariadb-galera-5.5.52
mariadb-galera-5.5.53
mariadb-galera-5.5.54
mariadb-galera-5.5.55
mariadb-galera-5.5.56
mariadb-galera-5.5.57
mariadb-galera-5.5.58
mariadb-galera-5.5.59
mariadb-galera-5.5.60
mysql-5.*
mysql-5.5.39
mysql-5.5.40
mysql-5.5.41
mysql-5.5.42
mysql-5.5.43
mysql-5.5.44
mysql-5.5.45
mysql-5.5.46
mysql-5.5.47
mysql-5.5.48
mysql-5.5.49
mysql-5.5.50
mysql-5.5.51
mysql-5.5.52
mysql-5.5.53
mysql-5.5.54
mysql-5.5.55
mysql-5.5.56
mysql-5.5.57
mysql-5.5.58
mysql-5.5.59
mysql-5.5.60
mysql-8.*
mysql-8.0.0

Database specific

unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "5.7.0"
            },
            {
                "last_affected": "5.7.32"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "32"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "33"
            }
        ]
    }
]
vanir_signatures 
[
    {
        "signature_type": "Line",
        "deprecated": false,
        "id": "CVE-2021-2011-03b72084",
        "target": {
            "file": "sql-common/client.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "78191142045503767829834019020932019650",
                "250157719937173868004615858289264688140",
                "312170375706132797718465719883724591296",
                "15117071355854376419182426407334479680",
                "140920309514825384561268578794081140775",
                "130933521110411440899075290412605664940",
                "28770826883863233939468445958714821618",
                "49331132400223798885681869446783630656"
            ]
        },
        "signature_version": "v1",
        "source": "https://github.com/mysql/mysql-server/commit/e48d775c6f066add457fa8cfb2ebc4d5ff0c7613"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "id": "CVE-2021-2011-96a3e3de",
        "target": {
            "file": "sql-common/client.c",
            "function": "cli_read_rows"
        },
        "digest": {
            "length": 2052.0,
            "function_hash": "30804943894516639331708306752096632231"
        },
        "signature_version": "v1",
        "source": "https://github.com/mysql/mysql-server/commit/e48d775c6f066add457fa8cfb2ebc4d5ff0c7613"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "id": "CVE-2021-2011-e5eeae5c",
        "target": {
            "file": "sql-common/client.c",
            "function": "unpack_fields"
        },
        "digest": {
            "length": 3281.0,
            "function_hash": "88964842003053574630259804416355278302"
        },
        "signature_version": "v1",
        "source": "https://github.com/mysql/mysql-server/commit/e48d775c6f066add457fa8cfb2ebc4d5ff0c7613"
    }
]
source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-2011.json"