mariadb is vulnerable to use-after-free. An out-of-bounds access occurs in prepare_inplace_add_virtual
function in /storage/innobase/handler/handler0alter.cc
, allowing remote attackers to cause a use-after-free vulnerability.
jira.mariadb.org/browse/MDEV-26420
lists.fedoraproject.org/archives/list/[email protected]/message/WCOEGSVMIEXDZHBOSV6WVF7FAVRBR2JE/
lists.fedoraproject.org/archives/list/[email protected]/message/WTVAONAZXJFGHAJ4RP2OF3EAMQCOTDSQ/
lists.fedoraproject.org/archives/list/[email protected]/message/ZHISY4YVO4S5QJYYIXCIAXBM7INOL4VY/
secdb.alpinelinux.org/edge/main.yaml
secdb.alpinelinux.org/v3.13/main.yaml
secdb.alpinelinux.org/v3.14/main.yaml
secdb.alpinelinux.org/v3.15/main.yaml
secdb.alpinelinux.org/v3.16/main.yaml
security.netapp.com/advisory/ntap-20220818-0005/