Headline
CVE-2023-36366: MonetDB server 11.46.0 crashes at `log_create_delta` · Issue #7381 · MonetDB/MonetDB
An issue in the log_create_delta component of MonetDB Server v11.45.17 and v11.46.0 allows attackers to cause Denial of Service (DoS) via crafted SQL statements.
Describe the bug
MonetDB server 11.46.0 crashes at log_create_delta after executing SQL statements through mclient.
Expected behavior
Executing statements successfully or throwing errors, instead of breaking down the whole MonetDB server.
#0 0x7f19dc711703 (log_create_delta+0x23)
#1 0x7f19dc7116bd (log_create_col+0x1d)
#2 0x7f19dc6e088e (sql_trans_commit+0x36e)
#3 0x7f19dc6eb353 (sql_trans_end+0x83)
#4 0x7f19dc72e10c (mvc_commit+0x4fc)
#5 0x7f19dc65532c (SQLtransaction_commit+0x9c)
#6 0x7f19dc9a9c63 (runMALsequence+0x763)
#7 0x7f19dc9a931e (runMAL+0x9e)
#8 0x7f19dc6309f9 (SQLrun+0xd9)
#9 0x7f19dc631bee (SQLengineIntern+0x4e)
#10 0x7f19dc62f8c2 (SQLengine_+0x5e2)
#11 0x7f19dc62e343 (SQLengine+0x23)
#12 0x7f19dc9bd6cf (runScenario+0x4f)
#13 0x7f19dc9be16c (MSscheduleClient+0x68c)
#14 0x7f19dca65c2b (doChallenge+0xfb)
#15 0x7f19dd0e4ba0 (THRstarter+0x100)
#16 0x7f19dd154cc4 (thread_starter+0x34)
#17 0x7f19dc4c9609 (start_thread+0xd9)
#18 0x7f19dc3ee133 (clone+0x43)
Additional context
The MonetDB here runs in-memory database. The command line of starting MonetDB server is mserver5 --in-memory.