CVE-2021-22570

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2021-22570
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-22570.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2021-22570
Aliases
Downstream
Related
Published
2022-01-26T14:15:08.067Z
Modified
2026-04-10T04:30:20.940528Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

Nullptr dereference when a null char is present in a proto symbol. The symbol is parsed incorrectly, leading to an unchecked call into the proto file's name during generation of the resulting error message. Since the symbol is incorrectly parsed, the file is nullptr. We recommend upgrading to version 3.15.0 or greater.

References

Affected packages

Git / github.com/mysql/mysql-server

Affected ranges

Type
GIT
Repo
https://github.com/mysql/mysql-server
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
527c12ed611f3fe072c3043734319edb2c733099
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
6846e6b2f72931991cc9fd589dc9946ea2ab58c9
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "9.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "8.0.28"
        }
    ]
}
Type
GIT
Repo
https://github.com/protocolbuffers/protobuf
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
ae50d9b9902526efd6c7a1907d09739f959c6297
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
6a6cd88c262ffdb1738167a47d5fcc7a3eb4edac
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "3.15.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "34"
        }
    ]
}

Affected versions

3.*
3.15.0-rc1
mysql-3.*
mysql-3.23.22-beta
mysql-3.23.28-gamma
mysql-3.23.30-gamma
mysql-3.23.31
mysql-3.23.32
mysql-3.23.33
mysql-3.23.36
mysql-4.*
mysql-4.0.2
mysql-4.0.4
mysql-5.*
mysql-5.1.4
mysql-8.*
mysql-8.0.28
mysql-9.*
mysql-9.0.0
mysql-9.0.0-release
mysql-cluster-8.*
mysql-cluster-8.0.28
mysql-cluster-9.*
mysql-cluster-9.0.0
rust-prerelease-4.*
rust-prerelease-4.30.0-beta1
rust-prerelease-4.31.0-beta1
v2.*
v2.6.0
v2.6.1rc1
Other
v26-dev
v27-dev
v28-dev
v29-dev
v30-dev
v31-dev
v32-dev
v33-dev
v3.*
v3.0.0-alpha-3
v3.0.0-alpha-4
v3.0.0-beta-1
v3.0.0-beta-1-bzl-fix
v3.0.0-beta-2
v3.0.0-beta-3-pre-1
v3.12.3
v3.15.0-rc1
v3.15.0-rc2
v3.20.0-rc2
v34.*
v34.0
v34.0-rc1.1
v5.*
v5.34.0-objectivec
v5.34.0-rc1-objectivec

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-22570.json"
unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "10.0"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "11.0"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "35"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "36"
            }
        ]
    }
]