CVE-2022-24052
Publication date 18 February 2022
Last updated 24 July 2024
Ubuntu priority
Cvss 3 Severity Score
MariaDB CONNECT Storage Engine Heap-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL queries. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the service account. Was ZDI-CAN-16190.
Status
Package | Ubuntu Release | Status |
---|---|---|
mariadb-10.0 | 16.04 LTS xenial |
Needs evaluation
|
14.04 LTS trusty | Ignored end of standard support | |
mariadb-10.1 | 18.04 LTS bionic |
Needs evaluation
|
16.04 LTS xenial | Ignored end of standard support | |
14.04 LTS trusty | Ignored end of standard support | |
mariadb-10.3 | 20.04 LTS focal |
Fixed 1:10.3.34-0ubuntu0.20.04.1
|
16.04 LTS xenial | Ignored end of standard support | |
14.04 LTS trusty | Ignored end of standard support | |
mariadb-10.5 | ||
16.04 LTS xenial | Ignored end of standard support | |
14.04 LTS trusty | Ignored end of standard support | |
mariadb-10.6 | 24.04 LTS noble | Not in release |
22.04 LTS jammy |
Not affected
|
|
16.04 LTS xenial | Ignored end of standard support | |
14.04 LTS trusty | Ignored end of standard support | |
mariadb-5.5 | 16.04 LTS xenial | Ignored end of standard support |
14.04 LTS trusty | Ignored end of standard support |
Severity score breakdown
Parameter | Value |
---|---|
Base score | 7.8 · High |
Attack vector | Local |
Attack complexity | Low |
Privileges required | Low |
User interaction | None |
Scope | Unchanged |
Confidentiality | High |
Integrity impact | High |
Availability impact | High |
Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
References
Related Ubuntu Security Notices (USN)
- USN-5305-1
- MariaDB vulnerabilities
- 28 February 2022