[MDEV-24840] Crash caused by query with IN subquery containing union of two table value costructors - Jira

XML

Word

Printable

The following test case causes a crash of the server:

create table t1 (a int) engine=myisam;

insert into t1 values (3), (7), (1);

select a from t1 where a in (values (7) union values (8));

"mysqld" received signal SIGSEGV, Segmentation fault.

0x0000555555d7a212 in st_select_lex_unit::optimize (this=0x7fff90013f80) at /home/igor/maria-git/10.3-mdev-22786/sql/sql_union.cc:1430:

1428         sl->join->select_options=

1429           (select_limit_cnt == HA_POS_ERROR || sl->braces) ?

1430           sl->options & ~OPTION_FOUND_ROWS : sl->options |

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.