Search CVE reports
1 – 10 of 1861 results
DBI versions before 1.650 for Perl read one byte out-of-bounds in preparse when deleting an initial SQL comment. The preparse method normalises SQL and removes comments. When the SQL starts with a comment line, the deletion of...
1 affected package
libdbi-perl
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| libdbi-perl | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
DBI versions before 1.650 for Perl have a heap overflow when preparsing SQL statements with an extreme number of placeholders. The fix for CVE-2026-10879 did not allocate enough memory to handle approximately 1.2-million...
1 affected package
libdbi-perl
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| libdbi-perl | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
DBI versions before 1.650 for Perl are vulnerable to code injection via caller-influenced Profile. When a string is assigned to a DBI handle's Profile attribute, DBI splits it into path, package and arguments, and interpolates the...
1 affected package
libdbi-perl
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| libdbi-perl | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
Some fixes available 5 of 14
Vulnerability in the MySQL Router product of Oracle MySQL (component: Router: General). Supported versions that are affected are 8.4.0-8.4.9 and 9.0.0-9.7.0. Easily exploitable vulnerability allows unauthenticated attacker with...
11 affected packages
mysql-5.5, mysql-5.7, mysql-8.0, mysql-8.4, mariadb...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mysql-5.5 | Not in release | Not in release | Not in release | — | — |
| mysql-5.7 | Not in release | Not in release | Not in release | — | Ignored |
| mysql-8.0 | Not in release | Fixed | Fixed | Fixed | — |
| mysql-8.4 | Fixed | Not in release | Not in release | — | — |
| mariadb | Needs evaluation | Needs evaluation | Not in release | — | — |
| mariadb-10.0 | Not in release | Not in release | Not in release | — | — |
| mariadb-10.1 | Not in release | Not in release | Not in release | — | Needs evaluation |
| mariadb-10.3 | Not in release | Not in release | Not in release | Ignored | — |
| mariadb-10.6 | Not in release | Not in release | Needs evaluation | — | — |
| percona-xtradb-cluster-5.6 | Not in release | Not in release | Not in release | — | — |
| percona-server-5.6 | Not in release | Not in release | Not in release | — | — |
Some fixes available 5 of 14
Vulnerability in the MySQL Server, MySQL Cluster product of Oracle MySQL (component: Server: Connection Handling). Supported versions that are affected are MySQL Server: 8.4.0-8.4.9, 9.0.0-9.7.0; MySQL Cluster: 8.0.11-8.0.46,...
11 affected packages
mysql-5.5, mysql-5.7, mysql-8.0, mysql-8.4, mariadb...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mysql-5.5 | Not in release | Not in release | Not in release | — | — |
| mysql-5.7 | Not in release | Not in release | Not in release | — | Ignored |
| mysql-8.0 | Not in release | Fixed | Fixed | Fixed | — |
| mysql-8.4 | Fixed | Not in release | Not in release | — | — |
| mariadb | Needs evaluation | Needs evaluation | Not in release | — | — |
| mariadb-10.0 | Not in release | Not in release | Not in release | — | — |
| mariadb-10.1 | Not in release | Not in release | Not in release | — | Needs evaluation |
| mariadb-10.3 | Not in release | Not in release | Not in release | Ignored | — |
| mariadb-10.6 | Not in release | Not in release | Needs evaluation | — | — |
| percona-xtradb-cluster-5.6 | Not in release | Not in release | Not in release | — | — |
| percona-server-5.6 | Not in release | Not in release | Not in release | — | — |
Vulnerability in the MySQL Shell product of Oracle MySQL (component: Shell: Dump and Load). Supported versions that are affected are 8.4.0-8.4.9 and 9.0.0-9.7.0. Easily exploitable vulnerability allows unauthenticated attacker...
11 affected packages
mysql-5.5, mysql-5.7, mysql-8.0, mysql-8.4, mariadb...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mysql-5.5 | Not in release | Not in release | Not in release | — | — |
| mysql-5.7 | Not in release | Not in release | Not in release | — | Ignored |
| mysql-8.0 | Not in release | Not affected | Not affected | Not affected | — |
| mysql-8.4 | Not affected | Not in release | Not in release | — | — |
| mariadb | Not affected | Not affected | Not in release | — | — |
| mariadb-10.0 | Not in release | Not in release | Not in release | — | — |
| mariadb-10.1 | Not in release | Not in release | Not in release | — | Not affected |
| mariadb-10.3 | Not in release | Not in release | Not in release | Ignored | — |
| mariadb-10.6 | Not in release | Not in release | Not affected | — | — |
| percona-xtradb-cluster-5.6 | Not in release | Not in release | Not in release | — | — |
| percona-server-5.6 | Not in release | Not in release | Not in release | — | — |
MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.27, 10.11.1 to before 10.11.18, 11.4.1 to before 11.4.12, 11.8.1 to before 11.8.8, and 12.3.1, a high-privileged MariaDB user...
5 affected packages
mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mariadb | Needs evaluation | Needs evaluation | Not in release | — | — |
| mariadb-10.0 | Not in release | Not in release | Not in release | — | — |
| mariadb-10.1 | Not in release | Not in release | Not in release | — | Needs evaluation |
| mariadb-10.3 | Not in release | Not in release | Not in release | Needs evaluation | — |
| mariadb-10.6 | Not in release | Not in release | Needs evaluation | — | — |
MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.27, 10.11.1 to before 10.11.18, 11.4.1 to before 11.4.12, 11.8.1 to before 11.8.8, and 12.3.1, during the SST the donor node is...
5 affected packages
mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mariadb | Needs evaluation | Needs evaluation | Not in release | — | — |
| mariadb-10.0 | Not in release | Not in release | Not in release | — | — |
| mariadb-10.1 | Not in release | Not in release | Not in release | — | Needs evaluation |
| mariadb-10.3 | Not in release | Not in release | Not in release | Needs evaluation | — |
| mariadb-10.6 | Not in release | Not in release | Needs evaluation | — | — |
MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.26, 10.11.1 to before 10.11.17, 11.4.1 to before 11.4.11, 11.8.1 to before 11.8.7, and 12.3.1, MariaDB allowed SELECT ... INTO...
5 affected packages
mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mariadb | Needs evaluation | Needs evaluation | Not in release | — | — |
| mariadb-10.0 | Not in release | Not in release | Not in release | — | — |
| mariadb-10.1 | Not in release | Not in release | Not in release | — | Needs evaluation |
| mariadb-10.3 | Not in release | Not in release | Not in release | Needs evaluation | — |
| mariadb-10.6 | Not in release | Not in release | Needs evaluation | — | — |
MariaDB server is a community developed fork of MySQL server. In versions 3.3.18 and 3.4.8, an application that was taking non-validated user input, escaping it with mysql_real_escape_string() and sending it to the database using...
5 affected packages
mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mariadb | Needs evaluation | Needs evaluation | Not in release | — | — |
| mariadb-10.0 | Not in release | Not in release | Not in release | — | — |
| mariadb-10.1 | Not in release | Not in release | Not in release | — | Needs evaluation |
| mariadb-10.3 | Not in release | Not in release | Not in release | Needs evaluation | — |
| mariadb-10.6 | Not in release | Not in release | Needs evaluation | — | — |