An issue in the component my_decimal::operator= of MariaDB Server v10.6.3 and below was discovered to allow attackers to cause a Denial of Service (DoS) via specially crafted SQL statements.
Related bugs and status
CVE-2022-27380 (Candidate)
is related to these bugs: