Launchpad.net

CVE 2022-27377

MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component Item_func_in::cleanup(), which is exploited via specially crafted SQL statements.

See the CVE page on Mitre.org for more details.