CVE-2022-32087: 
MariaDB Server vulnerability analysis and mitigation

MariaDB versions 10.2 to 10.7 were discovered to contain a segmentation fault vulnerability in the component Itemargs::walkargs. The vulnerability was assigned CVE-2022-32087 and was disclosed in July 2022. The affected software includes MariaDB versions from 10.3.0 up to 10.3.35, 10.4.0 up to 10.4.25, 10.5.0 up to 10.5.16, 10.6.0 up to 10.6.8, and 10.7.0 up to 10.7.4 (NVD, MariaDB Jira).

The vulnerability is a segmentation fault that occurs in the Itemargs::walkargs component of MariaDB. It has been assigned a CVSS v3.1 base score of 7.5 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H, indicating that it is network-accessible, requires low attack complexity, needs no privileges or user interaction, and can result in high availability impact (NetApp Advisory).

The successful exploitation of this vulnerability could lead to a Denial of Service (DoS) condition through a segmentation fault in the affected MariaDB servers. The vulnerability affects the availability of the system while having no direct impact on confidentiality or integrity (NetApp Advisory).

The vulnerability has been fixed in MariaDB versions 10.3.35, 10.4.25, 10.5.16, 10.6.8, and 10.7.4. Users are advised to upgrade to these or later versions to mitigate the vulnerability. Debian has also released security updates to address this issue in their distributions (Debian Advisory).