CVE-2023-5157

Summary

CVE	CVE-2023-5157
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-09-27 15:19:00 UTC
Updated	2023-12-04 12:15:00 UTC
Description	A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service.

Risk And Classification

Problem Types: NVD-CWE-noinfo

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Fedoraproject	Fedora	38	All	All	All
Application	Mariadb	Mariadb	All	All	All	All
Application	Redhat	Codeready Linux Builder	9.0	All	All	All
Application	Redhat	Codeready Linux Builder For Arm64	9.0_aarch64	All	All	All
Application	Redhat	Codeready Linux Builder For Arm64 Eus	9.2_aarch64	All	All	All
Application	Redhat	Codeready Linux Builder For Ibm Z Systems	9.0_s390x	All	All	All
Application	Redhat	Codeready Linux Builder For Ibm Z Systems Eus	9.2_s390x	All	All	All
Application	Redhat	Codeready Linux Builder For Power Little Endian	9.0_ppc64le	All	All	All
Application	Redhat	Codeready Linux Builder For Power Little Endian Eus	9.2_ppc64le	All	All	All
Operating System	Redhat	Enterprise Linux	8.0	All	All	All
Operating System	Redhat	Enterprise Linux	9.0	All	All	All
Operating System	Redhat	Enterprise Linux Eus	8.8	All	All	All
Operating System	Redhat	Enterprise Linux Eus	9.2	All	All	All
Operating System	Redhat	Enterprise Linux For Arm 64	8.0_aarch64	All	All	All
Operating System	Redhat	Enterprise Linux For Arm 64	9.0_aarch64	All	All	All
Operating System	Redhat	Enterprise Linux For Arm 64 Eus	8.8_aarch64	All	All	All
Operating System	Redhat	Enterprise Linux For Ibm Z Systems	8.0_s390x	All	All	All
Operating System	Redhat	Enterprise Linux For Ibm Z Systems	9.2_s390x	All	All	All
Operating System	Redhat	Enterprise Linux For Ibm Z Systems Eus	8.8_s390x	All	All	All
Operating System	Redhat	Enterprise Linux For Ibm Z Systems Eus	9.2_s390x	All	All	All
Operating System	Redhat	Enterprise Linux For Power Little Endian	8.0_ppc64le	All	All	All
Operating System	Redhat	Enterprise Linux For Power Little Endian	9.0_ppc64le	All	All	All
Operating System	Redhat	Enterprise Linux For Power Little Endian Eus	8.8_ppc64le	All	All	All
Operating System	Redhat	Enterprise Linux For Power Little Endian Eus	9.2_ppc64le	All	All	All
Operating System	Redhat	Enterprise Linux Server Aus	9.2	All	All	All
Operating System	Redhat	Enterprise Linux Server Tus	8.8	All	All	All

References

Reference	Source	Link	Tags
Red Hat	MISC	access.redhat.com
Red Hat		access.redhat.com
Red Hat		access.redhat.com
cve-details	MISC	access.redhat.com
Red Hat	MISC	access.redhat.com
2240246 – (CVE-2023-5157) CVE-2023-5157 mariadb: node crashes with Transport endpoint is not connected mysqld got signal 6	MISC	bugzilla.redhat.com
Red Hat		access.redhat.com
RHSA-2023:7633		access.redhat.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

160981 Oracle Enterprise Linux Security Update for mariadb:10.5 (ELSA-2023-5683)
160997 Oracle Enterprise Linux Security Update for galera and mariadb (ELSA-2023-5684)
242160 Red Hat Update for mariadb:10.5 (RHSA-2023:5683)
242162 Red Hat Update for galera and mariadb (RHSA-2023:5684)
242346 Red Hat Update for mariadb:10.5 (RHSA-2023:6822)
242349 Red Hat Update for mariadb:10.5 (RHSA-2023:6821)
242404 Red Hat Update for galera and mariadb (RHSA-2023:6883)
242541 Red Hat Update for rh-mariadb105-galera and rh-mariadb105-mariadb (RHSA-2023:7633)
378963 Alibaba Cloud Linux Security Update for mariadb:10.5 (ALINUX3-SA-2023:0128)
941292 AlmaLinux Security Update for mariadb:10.5 (ALSA-2023:5683)
941294 AlmaLinux Security Update for galera and mariadb (ALSA-2023:5684)
961045 Rocky Linux Security Update for mariadb:10.5 (RLSA-2023:5683)