Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in MariaDB Server before 11.4.10, 11.5.x through 11.8.x before 11.8.6, and 12.x before 12.2.2. If the caching_sha2_password authentication plugin is installed, and some user accounts are configured to use it, a large packet can crash the server because sha256_crypt_r uses alloca.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
未经控制的内存分配
Vulnerability Title
MariaDB Server 安全漏洞
Vulnerability Description
MariaDB Server是MariaDB开源的一个关系型数据库系统。 MariaDB Server 11.4.10之前版本、11.5.x至11.8.x在11.8.6之前版本和12.x在12.2.2之前版本存在安全漏洞,该漏洞源于caching_sha2_password身份验证插件存在缓冲区溢出,可能导致服务器崩溃。
CVSS Information
N/A
Vulnerability Type
N/A