CVE-2021-46669
- Source
- https://cve.org/CVERecord?id=CVE-2021-46669
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-46669.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2021-46669
- Aliases
- Downstream
- Related
- Published
- 2022-02-01T02:15:07.173Z
- Modified
- 2026-03-15T22:50:34.695833Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
MariaDB through 10.5.9 allows attackers to trigger a convertconstto_int use-after-free when the BIGINT data type is used.
- References
-
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRJCSPQHYPKTWXXZVDMY6JAHZJQ4TZ5X/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KHEOTQ63YWC3PGHGDFGS7AZIEXCGOPWH/
- https://lists.debian.org/debian-lts-announce/2022/09/msg00023.html
- https://security.netapp.com/advisory/ntap-20220221-0002/
- https://jira.mariadb.org/browse/MDEV-25638
- https://mariadb.com/kb/en/security/
Affected packages
Git / github.com/mariadb/server
Affected ranges
- Type
- GIT
- Repo
- https://github.com/mariadb/server
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedIntroducedFixedIntroducedFixedIntroducedFixedIntroducedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "fixed": "10.2.44" }, { "introduced": "10.3.0" }, { "fixed": "10.3.35" }, { "introduced": "10.4.0" }, { "fixed": "10.4.25" }, { "introduced": "10.5.0" }, { "fixed": "10.5.16" }, { "introduced": "10.6.0" }, { "fixed": "10.6.8" }, { "introduced": "0" }, { "last_affected": "10.0" } ] }
Database specific
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-46669.json"
vanir_signatures
[
{
"signature_type": "Function",
"source": "https://github.com/mariadb/server/commit/0ba528fe56f6c637d9fbc9d177a62610038fd519",
"id": "CVE-2021-46669-261ea06f",
"deprecated": false,
"target": {
"function": "st_select_lex::add_table_to_list",
"file": "sql/sql_parse.cc"
},
"signature_version": "v1",
"digest": {
"length": 3842.0,
"function_hash": "139410885805228531428960716111714496814"
}
},
{
"signature_type": "Line",
"source": "https://github.com/mariadb/server/commit/0ba528fe56f6c637d9fbc9d177a62610038fd519",
"id": "CVE-2021-46669-7971ffe8",
"deprecated": false,
"target": {
"file": "sql/sql_parse.cc"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"109653293203522022930865857668421870622",
"29073102755632696090890904852202915678",
"319062535768988456620840697081414713359",
"80418953152597147384415640027788794032"
],
"threshold": 0.9
}
}
]
unresolved_ranges
[
{
"events": [
{
"introduced": "10.7.0"
},
{
"fixed": "10.7.4"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "35"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "36"
}
]
}
]