In MariaDB before 10.9.2, compresswrite in extra/mariabackup/dscompress.cc does not release data_mutex upon a stream write failure, which allows local users to trigger a deadlock.
{ "vanir_signatures": [ { "id": "CVE-2022-38791-bab28f5d", "digest": { "length": 1094.0, "function_hash": "96567548985656349046472553596954460768" }, "target": { "function": "find_set", "file": "sql/strfunc.cc" }, "source": "https://github.com/mariadb/server/commit/faddcf3c395da640b760c3f701f5bc1f3baae6c4", "signature_version": "v1", "deprecated": false, "signature_type": "Function" }, { "id": "CVE-2022-38791-ee10862f", "digest": { "line_hashes": [ "271363707396860767418283350345897486504", "120596951573328682502907908502941671745", "115421961338400510566446524145876737974", "64074615696916198601226435566349591945" ], "threshold": 0.9 }, "target": { "file": "sql/strfunc.cc" }, "source": "https://github.com/mariadb/server/commit/faddcf3c395da640b760c3f701f5bc1f3baae6c4", "signature_version": "v1", "deprecated": false, "signature_type": "Line" } ] }