MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component Item_func_in::cleanup(), which is exploited via specially crafted SQL statements.

CPENameOperatorVersion
debian_linuxeq10.0
mariadbge10.3.0
mariadblt10.3.35
mariadbge10.7.0
mariadblt10.7.4
mariadbge10.4.0
mariadblt10.4.25
mariadbge10.5.0
mariadblt10.5.16
mariadbge10.6.0

Name	Operator	Version
debian_linux	eq	10.0
mariadb	ge	10.3.0
mariadb	lt	10.3.35
mariadb	ge	10.7.0
mariadb	lt	10.7.4
mariadb	ge	10.4.0
mariadb	lt	10.4.25
mariadb	ge	10.5.0
mariadb	lt	10.5.16
mariadb	ge	10.6.0