MariaDB is vulnerable to denial of service. The vulnerability exists due to a deadlock inds_xbstream.cc
, crashing the system when an error occurs (stream_ctxt->dest_file == NULL) while executing the method xbstream_open.
access.redhat.com/errata/RHSA-2022:1010
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=2092353
github.com/MariaDB/server/commit/b1351c15946349f9daa7e5297fb2ac6f3139e4a8
jira.mariadb.org/browse/MDEV-26574?filter=-2
security.netapp.com/advisory/ntap-20220707-0006/