MonetDB Server Denial-of-Service Vulnerability in atom_get_int Component

A denial-of-service vulnerability has been identified in MonetDB Server version 11.47.11. The issue arises in the atom_get_int component, where attackers can cause the server to crash by sending specially crafted SQL statements. This vulnerability can be reproduced by executing a SQL query that orders the results by a debug variable, which triggers a backtrace indicating the crash sequence.

Impact

Exploitation of this vulnerability leads to a crash of the MonetDB server, causing a denial-of-service condition where the server is no longer available to handle requests.

Reproduction

The vulnerability can be reproduced by running a Docker container with the MonetDB image version Jun2023-SP2. After starting the container and setting up the database admin password, a test SQL file containing a crafted SQL statement is executed using the MonetDB client. This SQL statement, when processed by the server, causes it to crash, as confirmed by checking the server process status after the execution.