SB2023092022 - Red Hat Enterprise Linux 8 update for the mariadb:10.3 module

Description

This security bulletin contains information about 4 secuirty vulnerabilities.

1) Buffer overflow (CVE-ID: CVE-2022-32084)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a segmentation fault via the component sub_select. A local user can send a specially crafted file and escalate privileges on the system.

2) Buffer overflow (CVE-ID: CVE-2022-32091)

The vulnerability allows a local user to execute arbitrary code on the target system.

The vulnerability exists due to a use-after-poison in in __interceptor_memset at /libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc. A local user can create a specially crafted file and execute arbitrary code on the target system.

3) Resource management error (CVE-ID: CVE-2022-38791)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to compress_write() function in extra/mariabackup/ds_compress.cc does not release data_mutex upon a stream write failure. A local user can trigger a deadlock and perform a denial of service (DoS) attack.

4) NULL pointer dereference (CVE-ID: CVE-2022-47015)

The vulnerability allows a remote user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the spider_db_mbase::print_warnings() function. A remote user can pass specially crafted data to the server and perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

• https://access.redhat.com/errata/RHSA-2023:5259