MariaDB Server before 10.3.34 thru 10.9.3 is vulnerable to Denial of Service. It is possible for function spiderdbmbase::print_warnings to dereference a null pointer.
{ "vanir_signatures": [ { "digest": { "line_hashes": [ "262183601554466879303542139680097441797", "219460772531774330687168802094553720875", "180516640286265012657797429331672688277", "259411688451775829275281600708079025690", "308105200068685041030647761518518488227", "336043570082798588763913224876227651988" ], "threshold": 0.9 }, "target": { "file": "storage/spider/spd_db_mysql.h" }, "signature_version": "v1", "signature_type": "Line", "id": "CVE-2022-47015-2623312f", "source": "https://github.com/mariadb/server/commit/be0a46b3d52b58956fd0d47d040b9f4514406954", "deprecated": false }, { "digest": { "length": 1295.0, "function_hash": "80176887243444836381511454193797483904" }, "target": { "function": "spider_db_mbase::print_warnings", "file": "storage/spider/spd_db_mysql.cc" }, "signature_version": "v1", "signature_type": "Function", "id": "CVE-2022-47015-64f1ddce", "source": "https://github.com/mariadb/server/commit/be0a46b3d52b58956fd0d47d040b9f4514406954", "deprecated": false }, { "digest": { "line_hashes": [ "254192567725623803008452046725777241988", "319507803863195792634278904037447303399", "141002786193143967955474157894371433373", "119698504016579500124273537942971179329", "41758622846282241057034844141729027389", "127046117630619674679145162654344087429", "9827524947422186008714606351842408991", "274357843765213334694652004279443393436", "251544921041534108193378618204000635506", "310310547847029634194500366985806513914", "102620932679455695300785552023806141463", "19177429045017051514589764559449097045", "30588458219454501670215019527577346619", "33872012908832064410468094426380856177", "157491852238909173588842361506269237735", "64362370982600800860058898856162873790", "44627775822241874809299137942637227990", "333972606457052682051807701440943671070", "314456323943297073334398128115641035994", "321583308976869202719675587584703687069", "128568161881214676930310378739565848615", "294303660624473172930612006348318247644", "322793817747552194949793229423212508916", "282910123905560167444252760160972945736", "116477730958547172637296691568680526459", "229723689330028387258787286753565275667", "32778791601020353828709323938623316392", "115946028600914397510074276633458560214", "193359386311141179742161875535107239682", "212328063663317545379023527414554797706", "119669661319323164289397667201505969238", "42005863716333758012841701291591401371", "220581082277654824416299837255868258588", "85164737961231038176058362241457429460", "194600565738041931503434215635297631942", "146393969496086621022703112500570395094", "34445869217857271487296990409456660560", "211992086002784646900754793609472939129", "269300072214606178217833324854666063346", "15109365170121484699198531554468426183", "114580640541125972156482976944330118628", "310539122930817265597320394720389033609", "172775085809817710686714269581698627710", "80739628491450587265267284322246220853", "152952074923147889705102893579827824474", "32775386887145961760668566212779757486", "20383471864065409997022935345527068410", "287019998809978238663923589986652918097", "105335829427684995434900375402824007037", "34407834833397897341595044210852560882", "226535631213177732171495805933097074049", "310038883619155113932846514889570753779", "309788940498478262889396841027022211380", "37443091159032879033940282057976618582", "147497497876416170177139118820927156099", "12006693355803981830882143522105480378", "100821305716773024938637942878776333387", "132381839429590287231718327283535754919", "211899479910430766449293520818908135613", "247506021959958802282277195862875121216", "86783724728335647922456817887706627868" ], "threshold": 0.9 }, "target": { "file": "storage/spider/spd_db_mysql.cc" }, "signature_version": "v1", "signature_type": "Line", "id": "CVE-2022-47015-d8b1c05f", "source": "https://github.com/mariadb/server/commit/be0a46b3d52b58956fd0d47d040b9f4514406954", "deprecated": false } ] }