CVE-2022-27383

CVE-2022-27383

EPSS 2.0%

MariaDB Server v10.6 and below was discovered to contain an use-after-free in the component my_strcasecmp_8bit, which is exploited via specially crafted SQL statements.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://jira.mariadb.org/browse/MDEV-26323 https://lists.debian.org/debian-lts-announce/2022/09/msg00023.html https://security.netapp.com/advisory/ntap-20220519-0006/