SELECT 1 FROM (SELECT 1 UNION SELECT 1 

ORDER BY  (SELECT 1 FROM dual WHERE 'x' IN (SELECT 1 FROM dual HAVING XXX)) )dt   ;

220525 16:57:41 [ERROR] mysqld got signal 11 ;

Server version: 10.3.36-MariaDB-debug-log

sql/signal_handler.cc:221(handle_fatal_signal)[0x564cc138f742]

sigaction.c:0(__restore_rt)[0x7fc851cb6420]

sql/item.cc:8083(Item_ref::fix_fields(THD*, Item**))[0x564cc1419078]

sql/item.h:829(Item::fix_fields_if_needed(THD*, Item**))[0x564cc09a175b]

sql/item_func.cc:352(Item_func::fix_fields(THD*, Item**))[0x564cc14d6f34]

sql/item.h:829(Item::fix_fields_if_needed(THD*, Item**))[0x564cc09a175b]

sql/item.h:833(Item::fix_fields_if_needed_for_scalar(THD*, Item**))[0x564cc09a1795]

sql/item.h:838(Item::fix_fields_if_needed_for_bool(THD*, Item**))[0x564cc0ac7599]

sql/sql_select.cc:1215(JOIN::prepare(TABLE_LIST*, unsigned int, Item*, unsigned int, st_order*, bool, st_order*, Item*, st_order*, st_select_lex*, st_select_lex_unit*))[0x564cc0cbffbd]

sql/item_subselect.cc:3808(subselect_single_select_engine::prepare(THD*))[0x564cc15ca3d8]

sql/item_subselect.cc:282(Item_subselect::fix_fields(THD*, Item**))[0x564cc15a4203]

sql/item_subselect.cc:3471(Item_in_subselect::fix_fields(THD*, Item**))[0x564cc15c71ad]

sql/item.h:829(Item::fix_fields_if_needed(THD*, Item**))[0x564cc09a175b]

sql/item.h:833(Item::fix_fields_if_needed_for_scalar(THD*, Item**))[0x564cc09a1795]

sql/item.h:838(Item::fix_fields_if_needed_for_bool(THD*, Item**))[0x564cc0ac7599]

sql/sql_base.cc:8274(setup_conds(THD*, TABLE_LIST*, List<TABLE_LIST>&, Item**))[0x564cc0abed6e]

sql/sql_select.cc:660(setup_without_group(THD*, Bounds_checked_array<Item*>, TABLE_LIST*, List<TABLE_LIST>&, List<Item>&, List<Item>&, Item**, st_order*, st_order*, List<Window_spec>&, List<Item_window_func>&, bool*, unsigned int*))[0x564cc0cb9344]

sql/sql_select.cc:1157(JOIN::prepare(TABLE_LIST*, unsigned int, Item*, unsigned int, st_order*, bool, st_order*, Item*, st_order*, st_select_lex*, st_select_lex_unit*))[0x564cc0cbf394]

sql/item_subselect.cc:3808(subselect_single_select_engine::prepare(THD*))[0x564cc15ca3d8]

sql/item_subselect.cc:282(Item_subselect::fix_fields(THD*, Item**))[0x564cc15a4203]

sql/item.h:829(Item::fix_fields_if_needed(THD*, Item**))[0x564cc09a175b]

sql/item.h:833(Item::fix_fields_if_needed_for_scalar(THD*, Item**))[0x564cc09a1795]

sql/item.h:842(Item::fix_fields_if_needed_for_order_by(THD*, Item**))[0x564cc0d929db]

sql/sql_select.cc:23711(find_order_in_list(THD*, Bounds_checked_array<Item*>, TABLE_LIST*, st_order*, List<Item>&, List<Item>&, bool, bool, bool))[0x564cc0d6b973]

sql/sql_select.cc:23758(setup_order(THD*, Bounds_checked_array<Item*>, TABLE_LIST*, List<Item>&, List<Item>&, st_order*, bool))[0x564cc0d6bf39]

sql/sql_select.cc:676(setup_without_group(THD*, Bounds_checked_array<Item*>, TABLE_LIST*, List<TABLE_LIST>&, List<Item>&, List<Item>&, Item**, st_order*, st_order*, List<Window_spec>&, List<Item_window_func>&, bool*, unsigned int*))[0x564cc0cb9798]

sql/sql_select.cc:1157(JOIN::prepare(TABLE_LIST*, unsigned int, Item*, unsigned int, st_order*, bool, st_order*, Item*, st_order*, st_select_lex*, st_select_lex_unit*))[0x564cc0cbf394]

sql/sql_select.cc:4305(mysql_select(THD*, TABLE_LIST*, unsigned int, List<Item>&, Item*, unsigned int, st_order*, st_order*, Item*, st_order*, unsigned long long, select_result*, st_select_lex_unit*, st_select_lex*))[0x564cc0ce0a2a]

sql/sql_union.cc:1673(st_select_lex_unit::exec())[0x564cc0eb93c7]

sql/sql_derived.cc:1169(mysql_derived_fill(THD*, LEX*, TABLE_LIST*))[0x564cc0b5670e]

sql/sql_derived.cc:193(mysql_handle_single_derived(LEX*, TABLE_LIST*, unsigned int))[0x564cc0b5028d]

sql/sql_select.cc:12913(st_join_table::preread_init())[0x564cc0d1eeb6]

sql/sql_select.cc:19853(sub_select(JOIN*, st_join_table*, bool))[0x564cc0d4e90f]

sql/sql_select.cc:19423(do_select(JOIN*, Procedure*))[0x564cc0d4ce88]

sql/sql_select.cc:4151(JOIN::exec_inner())[0x564cc0cdfa6d]

sql/sql_select.cc:3946(JOIN::exec())[0x564cc0cdd3ea]

sql/sql_select.cc:4356(mysql_select(THD*, TABLE_LIST*, unsigned int, List<Item>&, Item*, unsigned int, st_order*, st_order*, Item*, st_order*, unsigned long long, select_result*, st_select_lex_unit*, st_select_lex*))[0x564cc0ce0ee8]

sql/sql_select.cc:372(handle_select(THD*, LEX*, select_result*, unsigned long))[0x564cc0cb7449]

sql/sql_parse.cc:6339(execute_sqlcom_select(THD*, TABLE_LIST*))[0x564cc0c28191]

sql/sql_parse.cc:3870(mysql_execute_command(THD*))[0x564cc0c161cc]

sql/sql_parse.cc:7870(mysql_parse(THD*, char*, unsigned int, Parser_state*, bool, bool))[0x564cc0c31eee]

sql/sql_parse.cc:1855(dispatch_command(enum_server_command, THD*, char*, unsigned int, bool, bool))[0x564cc0c08dcb]

sql/sql_parse.cc:1398(do_command(THD*))[0x564cc0c0590e]

sql/sql_connect.cc:1403(do_handle_one_connection(CONNECT*))[0x564cc0fd8ef1]

sql/sql_connect.cc:1309(handle_one_connection)[0x564cc0fd87ab]

perfschema/pfs.cc:1871(pfs_spawn_thread)[0x564cc2608209]

nptl/pthread_create.c:478(start_thread)[0x7fc851caa609]

addr2line: DWARF error: section .debug_info is larger than its filesize! (0x93ef57 vs 0x530ea0)

/lib/x86_64-linux-gnu/libc.so.6(clone+0x43)[0x7fc851bcd133]

Query (0x62b000000290): SELECT 1 FROM (SELECT 1 UNION SELECT 1 

ORDER BY  (SELECT 1 FROM dual WHERE 'x' IN (SELECT 1 FROM dual HAVING XXX)) )dt

SELECT 1 FROM (SELECT 1 UNION SELECT 2 ORDER BY  (SELECT 1 FROM DUAL WHERE xxx = 0)) dt;

create table t1 (a int, b int);

insert into t1 values (3,8), (7,2), (1,4), (5,9);

create table t2 (a int, b int);

insert into t2 values (9,1), (7,3), (2,6);

create table t3 (c int, d int);

insert into t3 values (7,8), (1,2), (3,8);

select * from

(

  select a,b from t1 where t1.a > 3

  union

  select a,b from t2 where t2.b < 6

  order by (a - b / (select a + max(c) from t3  where d = x))

) dt;