CVE-2023-52970

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-52970
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-52970.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-52970
Aliases
Related
Published
2025-03-08T23:15:14Z
Modified
2025-06-10T13:12:10.904587Z
Downstream
Summary
[none]
Details

MariaDB Server 10.4 through 10.5., 10.6 through 10.6., 10.7 through 10.11., 11.0 through 11.0., and 11.1 through 11.4.* crashes in Itemdirectviewref::derivedfieldtransformerfor_where.

References

Affected packages

Debian:12 / mariadb

Package

Name
mariadb
Purl
pkg:deb/debian/mariadb?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:10.*

1:10.11.3-1
1:10.11.3-2~exp1
1:10.11.4-1~deb12u1
1:10.11.4-1
1:10.11.5-1
1:10.11.5-2
1:10.11.5-3
1:10.11.6-0+deb12u1
1:10.11.6-1
1:10.11.6-2
1:10.11.6-2.1~exp1
1:10.11.7-1
1:10.11.7-2
1:10.11.7-3
1:10.11.7-4
1:10.11.8-1
1:10.11.9-0+deb12u1
1:10.11.11-0+deb12u1

1:11.*

1:11.4.2-1
1:11.4.2-2
1:11.4.2-3
1:11.4.2-4
1:11.4.3-1
1:11.4.4-1
1:11.4.4-2
1:11.4.4-3
1:11.4.5-1
1:11.4.5-2~exp1
1:11.8.1-1
1:11.8.1-2
1:11.8.1-3
1:11.8.1-4

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:13 / mariadb

Package

Name
mariadb
Purl
pkg:deb/debian/mariadb?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:10.*

1:10.11.3-1
1:10.11.3-2~exp1
1:10.11.4-1~deb12u1
1:10.11.4-1
1:10.11.5-1
1:10.11.5-2
1:10.11.5-3
1:10.11.6-1
1:10.11.6-2
1:10.11.6-2.1~exp1
1:10.11.7-1
1:10.11.7-2
1:10.11.7-3
1:10.11.7-4
1:10.11.8-1

1:11.*

1:11.4.2-1
1:11.4.2-2
1:11.4.2-3
1:11.4.2-4
1:11.4.3-1
1:11.4.4-1
1:11.4.4-2
1:11.4.4-3
1:11.4.5-1
1:11.4.5-2~exp1
1:11.8.1-1
1:11.8.1-2
1:11.8.1-3
1:11.8.1-4

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:11 / mariadb-10.5

Package

Name
mariadb-10.5
Purl
pkg:deb/debian/mariadb-10.5?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:10.5.28-0+deb11u2

Affected versions

1:10.*

1:10.5.11-1
1:10.5.12-0+deb11u1
1:10.5.12-1
1:10.5.13-0+deb11u1
1:10.5.15-0+deb11u1
1:10.5.18-0+deb11u1
1:10.5.19-0+deb11u1
1:10.5.19-0+deb11u2
1:10.5.21-0+deb11u1
1:10.5.23-0+deb11u1
1:10.5.26-0+deb11u1
1:10.5.26-0+deb11u2
1:10.5.28-0+deb11u1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}