Fixed
Created: May 25, 2022
Updated: Jun 6, 2022
Resolved Date: Jun 6, 2022
Found In Version: 10.19.45.1
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Userspace
MariaDB Server before 10.7 is vulnerable to Denial of Service. In extra/mariabackup/ds_compress.cc, when an error occurs (i.e., going to the err label) while executing the method create_worker_threads, the held lock thd->ctrl_mutex is not released correctly, which allows local users to trigger a denial of service due to the deadlock.
CREATE(Triage):(User=admin) CVE-2022-31623 (https://nvd.nist.gov/vuln/detail/CVE-2022-31623)
