CVEs affecting projects tracked on Release Alert, from NVD & OSV.
CVE-2026-32710 — HIGH severity vulnerability | Release Alert
CVE-2026-32710
8.5
HIGHCVSS v3
Published
March 20, 2026
Affected
8 projects
Assigned by
GitHub
Severity scale
010
Description
MariaDB server is a community developed fork of MySQL server. An authenticated user can crash MariaDB versions 11.4 before 11.4.10 and 11.8 before 11.8.6 via a bug in JSON_SCHEMA_VALID() function. Under certain conditions it might be possible to turn the crash into a remote code execution. These conditions require tight control over memory layout which is generally only attainable in a lab environment. This issue is fixed in MariaDB 11.4.10, MariaDB 11.8.6, and MariaDB 12.2.2.
GitHubMariaDB server is a community developed fork of MySQL server. Started by core members of the original MySQL team, MariaDB actively works with outside developers to deliver the most featureful, stable, and sanely licensed open SQL server in the industry.
ChocolateyMariaDB is designed as a drop-in replacement of [MySQL](https://community.chocolatey.org/packages/mysql) with more features, new storage engines, fewer bugs, and better performance. MariaDB server is a community developed fork of MySQL server started by core members of the original MySQL team.
MariaDB strives to be the logical choice for database professionals looking for a robust, scalable, and reliable SQL server. To accomplish this, the MariaDB Foundation work closely and cooperatively with the larger community of users and developers in the true spirit of Free and open source software, and release software in a manner that balances predictability with reliability.
#### MariaDB comparison to MySQL
* [Features](https://mariadb.com/kb/en/mariadb/mariadb-vs-mysql-features/)
* [Compatibility](https://mariadb.com/kb/en/mariadb/mariadb-vs-mysql-compatibility/)
#### Community
* [Facebook](https://www.facebook.com/MariaDB.dbms)
* [Google+](https://plus.google.com/+mariadb)
* [Twitter](https://twitter.com/mariadb)
**Please Note**: This is an automatically updated package. If you find it is
out of date by more than a day or two, please contact the maintainer(s) and
let them know [here](https://github.com/mkevenaar/chocolatey-packages/issues) that the package is no longer updating correctly.