CVE-2021-46662

Summary

CVE	CVE-2021-46662
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2022-02-01 02:15:00 UTC
Updated	2022-04-13 16:49:00 UTC
Description	MariaDB through 10.5.9 allows a set_var.cc application crash via certain uses of an UPDATE statement in conjunction with a nested subquery.

Risk And Classification

Problem Types: NVD-CWE-noinfo

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Mariadb	Mariadb	All	All	All	All
Application	Mariadb	Mariadb	All	All	All	All

References

Reference	Source	Link	Tags
Security Vulnerabilities Fixed in MariaDB - MariaDB Knowledge Base	CONFIRM	mariadb.com
January 2022 MariaDB Vulnerabilities in NetApp Products \| NetApp Product Security	CONFIRM	security.netapp.com
[MDEV-25637] Bug report: abortion in sql/set_var.cc:0 - Jira	MISC	jira.mariadb.org
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

159765 Oracle Enterprise Linux Security Update for mariadb:10.3 (ELSA-2022-1556)
159775 Oracle Enterprise Linux Security Update for mariadb:10.5 (ELSA-2022-1557)
180224 Debian Security Update for mariadb-10.5mariadb-10.3 (CVE-2021-46662)
240162 Red Hat Update for rh-mariadb103-mariadb (RHSA-2022:1010)
240163 Red Hat Update for rh-mariadb105-mariadb (RHSA-2022:1007)
240239 Red Hat Update for mariadb:10.5 security (RHSA-2022:1557)
240255 Red Hat Update for mariadb:10.3 (RHSA-2022:1556)
240384 Red Hat Update for mariadb:10.3 (RHSA-2022:4818)
354476 Amazon Linux Security Advisory for mariadb105 : ALAS2022-2022-182
355152 Amazon Linux Security Advisory for mariadb105 : ALAS2023-2023-037
356265 Amazon Linux Security Advisory for mariadb : ALASMARIADB10.5-2023-003
377393 Alibaba Cloud Linux Security Update for mariadb:10.5 (ALINUX3-SA-2022:0034)
501971 Alpine Linux Security Update for mariadb
502457 Alpine Linux Security Update for mariadb
504147 Alpine Linux Security Update for mariadb
671573 EulerOS Security Update for mariadb (EulerOS-SA-2022-1543)
671693 EulerOS Security Update for mariadb (EulerOS-SA-2022-1746)
672043 EulerOS Security Update for mariadb (EulerOS-SA-2022-2227)
900629 Common Base Linux Mariner (CBL-Mariner) Security Update for mariadb (8397)
901753 Common Base Linux Mariner (CBL-Mariner) Security Update for mariadb (8406-1)
940485 AlmaLinux Security Update for mariadb:10.3 (ALSA-2022:1556)
940488 AlmaLinux Security Update for mariadb:10.5 (ALSA-2022:1557)
960353 Rocky Linux Security Update for mariadb:10.5 (RLSA-2022:1557)
960427 Rocky Linux Security Update for mariadb:10.3 (RLSA-2022:1556)