vulnerability
Amazon Linux 2023: CVE-2023-52968: Medium priority package update for mariadb105
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:N/AC:L/Au:M/C:N/I:N/A:C) | Mar 8, 2025 | Apr 15, 2025 | Jul 9, 2025 |
Severity
6
CVSS
(AV:N/AC:L/Au:M/C:N/I:N/A:C)
Published
Mar 8, 2025
Added
Apr 15, 2025
Modified
Jul 9, 2025
Description
MariaDB Server 10.4 before 10.4.33, 10.5 before 10.5.24, 10.6 before 10.6.17, 10.7 through 10.11 before 10.11.7, 11.0 before 11.0.5, and 11.1 before 11.1.4 calls fix_fields_if_needed under mysql_derived_prepare when derived is not yet prepared, leading to a find_field_in_table crash.
Solutions
amazon-linux-2023-upgrade-mariadb105amazon-linux-2023-upgrade-mariadb105-backupamazon-linux-2023-upgrade-mariadb105-backup-debuginfoamazon-linux-2023-upgrade-mariadb105-commonamazon-linux-2023-upgrade-mariadb105-connect-engineamazon-linux-2023-upgrade-mariadb105-connect-engine-debuginfoamazon-linux-2023-upgrade-mariadb105-cracklib-password-checkamazon-linux-2023-upgrade-mariadb105-cracklib-password-check-debuginfoamazon-linux-2023-upgrade-mariadb105-debuginfoamazon-linux-2023-upgrade-mariadb105-debugsourceamazon-linux-2023-upgrade-mariadb105-develamazon-linux-2023-upgrade-mariadb105-errmsgamazon-linux-2023-upgrade-mariadb105-gssapi-serveramazon-linux-2023-upgrade-mariadb105-gssapi-server-debuginfoamazon-linux-2023-upgrade-mariadb105-oqgraph-engineamazon-linux-2023-upgrade-mariadb105-oqgraph-engine-debuginfoamazon-linux-2023-upgrade-mariadb105-pamamazon-linux-2023-upgrade-mariadb105-pam-debuginfoamazon-linux-2023-upgrade-mariadb105-rocksdb-engineamazon-linux-2023-upgrade-mariadb105-rocksdb-engine-debuginfoamazon-linux-2023-upgrade-mariadb105-serveramazon-linux-2023-upgrade-mariadb105-server-debuginfoamazon-linux-2023-upgrade-mariadb105-server-utilsamazon-linux-2023-upgrade-mariadb105-server-utils-debuginfoamazon-linux-2023-upgrade-mariadb105-sphinx-engineamazon-linux-2023-upgrade-mariadb105-sphinx-engine-debuginfoamazon-linux-2023-upgrade-mariadb105-testamazon-linux-2023-upgrade-mariadb105-test-debuginfo
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.