CVE-2021-46663

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2021-46663

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-46663.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2021-46663

Aliases

Downstream

ALPINE-CVE-2021-46663

BELL-CVE-2021-46663

DEBIAN-CVE-2021-46663

OESA-2022-1587

RHSA-2022:5759

RHSA-2022:5826

RHSA-2022:5948

RHSA-2022:6306

RHSA-2022:6443

RHSA-2023:6821

RLSA-2022:5826

RLSA-2022:5948

RLSA-2022:6443

SUSE-RU-2023:3956-1

SUSE-RU-2023:4991-1

SUSE-SU-2022:0725-1

SUSE-SU-2022:0726-1

SUSE-SU-2022:0731-1

SUSE-SU-2022:0731-2

SUSE-SU-2022:0782-1

SUSE-SU-2022:2561-1

UBUNTU-CVE-2021-46663

USN-5305-1

openSUSE-SU-2022:0731-1

openSUSE-SU-2024:11867-1

Related

Published

2022-02-01T02:15:06.880Z

Modified

2026-02-18T07:29:14.870661Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

MariaDB through 10.5.13 allows a ha_maria::extra application crash via certain SELECT statements.

References

Affected packages

Git / github.com/mariadb/server

Affected ranges

Type: GIT
Repo: https://github.com/mariadb/server
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

65f602310c4ea086488bfaa50f36952162541a8c

Introduced

1a647b700f6b72dc97211510a5d0c647d5d3d911

Fixed

e3894f5d397722dd50fb91dbbdbad3aaf017a4b0

Introduced

1c91c6c845893cb2758ea0aec9e8c3b38508600b

Fixed

25ebbdfd85ab3b96a20adfb762fa1e608aace26b

Introduced

3a8ca9096ea82ca61811450775511533d6cb1bb4

Fixed

9aa3564e8a06c3d2027fc514213ecf42b049b06e

Introduced

561b6c7e513abc4ceba263252b519bf715ce80f4

Fixed

3a52569499e2f0c4d1f25db1e81617a9d9755400

Introduced

a2f147af35480e27bd599462db59b9b95f71acd9

Fixed

db09e101994b157eef523c39d20f3516a112b137

Affected versions

mariadb-10.*

mariadb-10.2.38

mariadb-10.2.39

mariadb-10.2.40

mariadb-10.2.41

mariadb-10.2.42

mariadb-10.2.43

mariadb-10.3.29

mariadb-10.3.30

mariadb-10.3.31

mariadb-10.3.32

mariadb-10.3.33

mariadb-10.3.34

mariadb-10.4.19

mariadb-10.4.20

mariadb-10.4.21

mariadb-10.4.22

mariadb-10.4.23

mariadb-10.4.24

mariadb-10.5.10

mariadb-10.5.11

mariadb-10.5.12

mariadb-10.5.13

mariadb-10.5.14

mariadb-10.5.15

mariadb-10.6.0

mariadb-10.6.1

mariadb-10.6.2

mariadb-10.6.3

mariadb-10.6.4

mariadb-10.6.5

mariadb-10.6.6

mariadb-10.6.7

mariadb-10.7.1

mariadb-10.7.2

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-46663.json"

vanir_signatures

[
    {
        "signature_version": "v1",
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "98111117393566517679651759304023085372",
                "304938594711446698139907843226650211733",
                "276479549989744167816865099922120078879",
                "270219840002247898028875582953023464708"
            ],
            "threshold": 0.9
        },
        "signature_type": "Line",
        "id": "CVE-2021-46663-84206f5b",
        "source": "https://github.com/mariadb/server/commit/3a52569499e2f0c4d1f25db1e81617a9d9755400",
        "target": {
            "file": "sql/sql_lex.cc"
        }
    },
    {
        "signature_version": "v1",
        "deprecated": false,
        "digest": {
            "length": 1922.0,
            "function_hash": "165020614219671822891384418769980927498"
        },
        "signature_type": "Function",
        "id": "CVE-2021-46663-d4dba36e",
        "source": "https://github.com/mariadb/server/commit/3a52569499e2f0c4d1f25db1e81617a9d9755400",
        "target": {
            "function": "st_select_lex::optimize_unflattened_subqueries",
            "file": "sql/sql_lex.cc"
        }
    }
]