Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-39413

wsrep unsafe handling of parameters

    XMLWordPrintable

Details

    • Can result in unexpected behaviour
    • Q2/2026 Replic. Development

    Description

      wsrep_sst_mariabackup on the donor side interpolates parameters sent by the joiner into the command line without proper validation.

      For example, certificate's CommonName can contain arbitrary characters.

      Reported by Asim Viladi Oglu Manizada

      Attachments

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. MDEV-39612 Galera Cluster-peer > Donor command execution

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. MDEV-39676 Galera Cluster-peer > Donor command execution

          • Blocker - Blocks development and/or testing work, production could not run.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. MDEV-39721 wsrep_notify_cmd should sanitize peer-supplied fields before shell substitution

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed
          links to

          Web Link CVE-2026-44168

          Activity

            People

              serg Sergei Golubchik
              serg Sergei Golubchik
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Git Integration

                  Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.