{"id":"CVE-2021-46666","details":"MariaDB before 10.6.2 allows an application crash because of mishandling of a pushdown from a HAVING clause to a WHERE clause.","aliases":["BIT-mariadb-2021-46666","BIT-mariadb-min-2021-46666","BIT-mysql-client-2021-46666"],"modified":"2026-05-18T22:59:16.188537Z","published":"2022-02-01T02:15:07.027Z","related":["ALSA-2022:1556","ALSA-2022:1557"],"references":[{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20220221-0002/"},{"type":"REPORT","url":"https://jira.mariadb.org/browse/MDEV-25635"},{"type":"FIX","url":"https://mariadb.com/kb/en/security/"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/mariadb/server","events":[{"introduced":"0"},{"fixed":"dfa2d0bc13362b949b1b1699955583f74e7db90a"},{"introduced":"20ae591abd0bfe1bfaee546989ee163f4ef832b1"},{"fixed":"75a65d3201a4486af96cf3277b6c5a4ba460eef7"},{"introduced":"c761b43451d54eeeecdf3c102906fcce88d4e9d9"},{"fixed":"c7ee039d36f69f24fb3b1c422fcff8dbf974e3eb"},{"introduced":"7c7f9bef28aa566557da31402142f6dd8298ddd2"},{"fixed":"dc82effa5df5e59be6c7de4038f0a832f37d9bdc"},{"introduced":"1a647b700f6b72dc97211510a5d0c647d5d3d911"},{"fixed":"59cf1a8a8ad07add11ea9a55ebb15828d3d99196"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"fixed":"10.2.39"},{"introduced":"10.3.0"},{"fixed":"10.3.30"},{"introduced":"10.4.0"},{"fixed":"10.4.20"},{"introduced":"10.5.0"},{"fixed":"10.5.11"},{"introduced":"10.6.0"},{"fixed":"10.6.2"}],"source":"CPE_FIELD","cpe":"cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*"}}],"versions":["mariadb-10.6.1","mariadb-10.6.0","mariadb-10.3.26","mariadb-10.5.4","mariadb-10.2.27","mariadb-10.3.21","mariadb-10.2.13","mariadb-10.5.2","mariadb-10.3.16","mariadb-10.2.31","mariadb-10.3.17","mariadb-10.3.10","mariadb-10.4.11","mariadb-10.2.30","mariadb-10.5.0","mariadb-10.4.10","mariadb-10.3.20","mariadb-10.2.29","mariadb-10.4.9","mariadb-10.3.19","mariadb-10.2.28","mariadb-10.3.18","mariadb-10.4.7","mariadb-10.2.26","mariadb-10.2.25","mariadb-10.2.24","mariadb-10.4.5","mariadb-10.4.4","mariadb-10.2.23","mariadb-10.4.3","mariadb-10.2.22","mariadb-10.3.12","mariadb-10.2.21","mariadb-10.2.20","mariadb-10.2.19","mariadb-10.2.18","mariadb-10.2.16","mariadb-10.3.7","mariadb-10.2.15","mariadb-10.3.6","mariadb-10.2.14","mariadb-10.3.5","mariadb-10.3.4","mariadb-10.2.12","mariadb-10.2.11","mariadb-10.2.10","mariadb-10.3.2","mariadb-10.3.1","mariadb-10.2.5","mariadb-10.3.0","mariadb-10.2.2","mariadb-10.2.1","mariadb-10.2.0","mariadb-10.1.8","mariadb-10.1.7","mariadb-10.1.6","mariadb-10.1.5","mariadb-10.1.4","mariadb-10.1.3","mariadb-10.1.2","mariadb-10.1.0"],"database_specific":{"vanir_signatures_modified":"2026-05-18T22:59:16Z","vanir_signatures":[{"signature_type":"Line","signature_version":"v1","target":{"file":"storage/innobase/buf/buf0rea.cc"},"deprecated":false,"source":"https://github.com/mariadb/server/commit/dfa2d0bc13362b949b1b1699955583f74e7db90a","id":"CVE-2021-46666-22653791","digest":{"line_hashes":["9400222600408394113854955845148251550","267257386336579331390611261914774828478","189536264958544660700185072002532972839","193805967944163620182999174848777714078","282869864226996165637981041103104536726","26938163949962398934495479444415632162","72241035954307945675111933680321883477","280566434063434889408790761027231048928","92125625348087383421259905267305515415","313495999497570500203034231747698112842","272437086787124780898559560572061079011"],"threshold":0.9}},{"signature_type":"Function","signature_version":"v1","target":{"function":"buf_read_ibuf_merge_pages","file":"storage/innobase/buf/buf0rea.cc"},"deprecated":false,"source":"https://github.com/mariadb/server/commit/dfa2d0bc13362b949b1b1699955583f74e7db90a","id":"CVE-2021-46666-3552b324","digest":{"length":1549,"function_hash":"167158152493564073249914155441787105995"}},{"signature_type":"Function","signature_version":"v1","target":{"function":"mysql_create_or_drop_trigger","file":"sql/sql_trigger.cc"},"deprecated":false,"source":"https://github.com/mariadb/server/commit/dc82effa5df5e59be6c7de4038f0a832f37d9bdc","id":"CVE-2021-46666-6ec580f9","digest":{"length":4444,"function_hash":"271011855159538044750489861653873782093"}},{"signature_type":"Line","signature_version":"v1","target":{"file":"sql/sql_trigger.cc"},"deprecated":false,"source":"https://github.com/mariadb/server/commit/dc82effa5df5e59be6c7de4038f0a832f37d9bdc","id":"CVE-2021-46666-7659b364","digest":{"line_hashes":["339559886780799090878085381958061360169","151729614400971874772847717965537069600","236125119658316257140538411157439741112","233028891501776821288285970878975086616","132348789304380855063178510341696500536","207724953019298377424453045592269973150","117547820429463739401442323606832607352","3985366193169446645772796996865175148","334240053135151456882726509273030013265","243428821448236076998137058487092230093","147309012040762761595059824433377694785","170035400329405409419591926010967389127","213151042119900840179898660610293341470","181897625268163181183859475736533996731","219021583297753988810205428399564317167","182521891829878384501911324957376069386","272977007887945453962689509597528533056","298571707135824001045329467307462523673","29366491492252379221699878742008539773","188224811239451808738716452688192890238"],"threshold":0.9}},{"signature_type":"Line","signature_version":"v1","target":{"file":"storage/innobase/dict/dict0dict.cc"},"deprecated":false,"source":"https://github.com/mariadb/server/commit/75a65d3201a4486af96cf3277b6c5a4ba460eef7","id":"CVE-2021-46666-b9d94415","digest":{"line_hashes":["183117465363777129542495803707492806621","67657611108690683428701830111045085461","63358048840660839436562395118625878523","121330641183731235168866599393679584506"],"threshold":0.9}},{"signature_type":"Function","signature_version":"v1","target":{"function":"dict_set_corrupted","file":"storage/innobase/dict/dict0dict.cc"},"deprecated":false,"source":"https://github.com/mariadb/server/commit/75a65d3201a4486af96cf3277b6c5a4ba460eef7","id":"CVE-2021-46666-c3c91b64","digest":{"length":1994,"function_hash":"765228184937249131489843188147560294"}},{"signature_type":"Line","signature_version":"v1","target":{"file":"storage/innobase/handler/ha_innodb.cc"},"deprecated":false,"source":"https://github.com/mariadb/server/commit/75a65d3201a4486af96cf3277b6c5a4ba460eef7","id":"CVE-2021-46666-cdea3ff4","digest":{"line_hashes":["277273648816874972059692720746076495680","183710423110090956913285231696283189815","257676914512298973488369991747556707758","79353217737707176234172779837544045217","243770059991028740159627133916562786411"],"threshold":0.9}},{"signature_type":"Function","signature_version":"v1","target":{"function":"ha_innobase::check","file":"storage/innobase/handler/ha_innodb.cc"},"deprecated":false,"source":"https://github.com/mariadb/server/commit/75a65d3201a4486af96cf3277b6c5a4ba460eef7","id":"CVE-2021-46666-fed27d0a","digest":{"length":4828,"function_hash":"37056481603397809199317577644289172704"}}],"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-46666.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}