Description
mariadb: MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used.
mariadb: lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer.
mariadb: lack of validating the existence of an object prior to performing operations on the object.
mariadb: lack of proper validation of a user-supplied string before using it as a format specifier.
mariadb: CONNECT Storage Engine Heap-based Buffer Overflow Privilege Escalation Vulnerability.
mariadb: assertion failure in Item_args::walk_arg.
mariadb: use-after-poison when complex conversion is involved in blob.
mariadb: crash in create_tmp_table::finalize.
mariadb: crash in component arg_comparator::compare_real_fixed.
mariadb: crash at my_decimal::operator=.
mariadb: crash at Field::set_default via specially crafted SQL statements.
mariadb: assertion failure via component Item_field::used_tables/update_depend_map_for_order.
mariadb: use-after-poison in my_strcasecmp_8bit() of ctype-simple.c.
mariadb: via component Item_subselect::init_expr_cache_tracker.
mariadb: crash in query_arena::set_query_arena upon SELECT from view.
mariadb: assertion failures in decimal_bin_size.
mariadb: crash when using HAVING with NOT EXIST predicate in an equality.
mariadb: assertion failure in compare_order_elements.
mariadb: crash when using HAVING with IS NULL predicate in an equality.
mariadb: use-after-poison in Binary_string::free_buffer.
mariadb: crash in multi-update and implicit grouping.
mariadb: assertion failure in sql/item_func.cc.
mariadb: crash via window function in expression in ORDER BY.
mariadb: assertion failure in sql/item_cmpfunc.cc.
mariadb: use-after-free when WHERE has subquery with an outer reference in HAVING.
mariadb: assertion failure in VDec::VDec at /sql/sql_type.cc.
mariadb: incorrect key in 'dup value' error after long unique.
mariadb: use-after-poison in Binary_string::free_buffer.
mariadb: improper locking due to the unreleased lock in extra/mariabackup/ds_compress.cc.
mariadb: improper locking due to the unreleased lock in extra/mariabackup/ds_compress.cc.
mariadb: Crash executing query with VIEW, aggregate and subquery.
mariadb: MariaDB allows an application crash in find_field_in_tables and find_order_in_list via an unused common table expression (CTE).
mariadb: MariaDB through 10.5.13 allows a ha_maria::extra application crash via certain SELECT statements.
mariadb: crash in sub_select_postjoin_aggr for a NULL value of aggr.
mariadb: crash because of incorrect used_tables expectations.
mariadb: crash via certain long SELECT DISTINCT statements.
Don't use less parallelism if not necessary (BZ#2096934).
Links in galera package description are bad (BZ#2096935).
[Tracker] Rebase to Galera 26.4.11 (BZ#2096936).