KB5065865: Fixes an issue in which the log files shrink

KB5065865 - Cumulative Update 21 for SQL Server 2022

Summary
This article describes Cumulative Update package 21 (CU21) for Microsoft SQL Server 2022. This update contains 16 fixes that were issued after the release of SQL Server 2022 Cumulative Update 20 and it updates components in the following builds:

• SQL Server - Product version: 16.0.4215.2, file version: 2022.160.4215.2
• Analysis Services - Product version: 16.0.43.247, file version: 2022.160.43.247

Known issues in this update
Incorrect behavior of SESSION_CONTEXT in parallel plans
Queries that use the built-in SESSION_CONTEXT function might return incorrect results or trigger access violation (AV) dumps when executed in parallel query plans. This issue stems from the way SESSION_CONTEXT interacts with parallel execution threads, particularly when the session is reset for reuse.

Improvements and fixes included in this update
A downloadable Excel workbook that contains a summary list of builds, together with their current support lifecycle, is available. The Excel file also contains detailed fix lists for SQL Server 2022, SQL Server 2019, and SQL Server 2017.

Bug Reference: 4433544
Description: Fixes an issue in which running the TRUNCATE TABLE WITH PARTITIONS statement on a table with non-aligned partitions succeeds unexpectedly and causes corruption.
Fix Area: SQL Server Engine
Component: DB Management
Platform: All

Bug Reference: 4145424
Description: Fixes an assertion dump issue on the primary replica of an availability group related to the expression "!(uaeUnused != prev && trace->Elements[prev].ThreadId == trace->Elements[curr].ThreadId) || (trace->Elements[prev].Value Fix Area: SQL Server Engine
Component: High Availability and Disaster Recovery
Platform: All

Bug Reference: 4419880
Description: Fixes a SQL injection vulnerability in a system stored procedure.
Fix Area: SQL Server Engine
Component: High Availability and Disaster Recovery
Platform: All

Bug Reference: 4311157
Description: Fixes a SQL Server on Linux termination issue that you might encounter when trying to send encrypted TLS/SSL data to a peer after receiving an alert such as bad_record_mac from the peer.
Fix Area: SQL Server Engine
Component: Linux
Platform: Linux

Bug Reference: 4419716
Description: Fixes a SQL injection vulnerability in a system stored procedure.
Fix Area: SQL Server Engine
Component: Metadata
Platform: All

Bug Reference: 4229256
Description: Fixes an issue in which DMVs are used in specific scenarios to inspect the text of statements that are running in other sessions and might contain sensitive data.
Fix Area: SQL Server Engine
Component: Programmability
Platform: All

Bug Reference: 4268984
Description: Fixes an access violation dump issue that you encounter in ACCESS_VIOLATION_c0000005_sqllang.dll!CScaOp_Intrinsic::FConvertToText_Intrinsic when executing queries that use the TRIM intrinsic.
Fix Area: SQL Server Engine
Component: Programmability
Platform: All

Bug Reference: 4410919
Description: Fixes an issue in which the TRY_CONVERT function might cause invalid results when the plan uses the Clustered Index Seek operator.
Fix Area: SQL Server Engine
Component: Query Optimizer
Platform: All

Bug Reference: 4441901
Description: Fixes an issue in which the change tracking auto cleanup process blocks the user triggered ALTER TABLE column-level DDL (ADD/DROP/ALTER COLUMN) operations.
Fix Area: SQL Server Engine
Component: Replication
Platform: All

Bug Reference: 4524294
Description: Fixes an issue in which adding a merge agent fails and throws out the following error when the subscription uses a non-default port: Msg 2560, Level 16, State 9, Procedure distribution.sys.sp_MSadd_merge_agent, Line <linenumber> [Batch Start Line 3] Parameter 2 is incorrect for this DBCC statement.
Fix Area: SQL Server Engine
Component: Replication
Platform: Windows

Bug Reference: 4424573
Description: Prevents logins with the ALTER ANY LOGIN permission from resetting the passwords of logins that have ALTER ANY LOGIN or IMPERSONATE ANY LOGIN permissions to avoid elevation of privilege.
Fix Area: SQL Server Engine
Component: Security Infrastructure
Platform: All

Bug Reference: 4520174
Description: Fixes an access violation that you encounter when running sp_describe_first_result_set on sys.database_ledger_digest_locations.
Fix Area: SQL Server Engine
Component: Security Infrastructure
Platform: All

Bug Reference: 4437734
Description: Prevents elevation of privilege by running SQL Agent job steps for built-in jobs with reduced permissions.
Fix Area: SQL Server Engine
Component: SQL Agent
Platform: All

Bug Reference: 4285469
Description: Fixes a vulnerability that lets users who have access to certain stored procedures perform SQL injection and run arbitrary code by using elevated privileges.
Fix Area: SQL Server Engine
Component: SQL Server Engine
Platform: All

• Bug Reference: 4448818
  Description: Fixes URLs in certain error messages (for example, error 14130 and error 14131).
  Fix Area: SQL Server Engine
  Component: SQL Server Engine
  Platform: All

Bug Reference: 2693201
Description: Fixes an issue in which the log files shrink beyond the specified target size under certain operations when you run the DBCC SHRINKFILE command.
Fix Area: SQL Server Engine
Component: Storage Management
Platform: All

Bug Reference: 4433544
Description: Fixes an issue in which running the TRUNCATE TABLE WITH PARTITIONS statement on a table with non-aligned partitions succeeds unexpectedly and causes corruption.
Fix Area: SQL Server Engine
Component: DB Management
Platform: All

Bug Reference: 4145424
Description: Fixes an assertion dump issue on the primary replica of an availability group related to the expression "!(uaeUnused != prev && trace->Elements[prev].ThreadId == trace->Elements[curr].ThreadId) || (trace->Elements[prev].Value <= value)."
Fix Area: SQL Server Engine
Component: High Availability and Disaster Recovery
Platform: All

Bug Reference: 4419880
Description: Fixes a SQL injection vulnerability in a system stored procedure.
Fix Area: SQL Server Engine
Component: High Availability and Disaster Recovery
Platform: All

Bug Reference: 4311157
Description: Fixes a SQL Server on Linux termination issue that you might encounter when trying to send encrypted TLS/SSL data to a peer after receiving an alert such as bad_record_mac from the peer.
Fix Area: SQL Server Engine
Component: Linux
Platform: Linux

Bug Reference: 4419716
Description: Fixes a SQL injection vulnerability in a system stored procedure.
Fix Area: SQL Server Engine
Component: Metadata
Platform: All

Bug Reference: 4229256
Description: Fixes an issue in which DMVs are used in specific scenarios to inspect the text of statements that are running in other sessions and might contain sensitive data.
Fix Area: SQL Server Engine
Component: Programmability
Platform: All

Bug Reference: 4268984
Description: Fixes an access violation dump issue that you encounter in ACCESS_VIOLATION_c0000005_sqllang.dll!CScaOp_Intrinsic::FConvertToText_Intrinsic when executing queries that use the TRIM intrinsic.
Fix Area: SQL Server Engine
Component: Programmability
Platform: All

Bug Reference: 4410919
Description: Fixes an issue in which the TRY_CONVERT function might cause invalid results when the plan uses the Clustered Index Seek operator.
Fix Area: SQL Server Engine
Component: Query Optimizer
Platform: All

Bug Reference: 4441901
Description: Fixes an issue in which the change tracking auto cleanup process blocks the user triggered ALTER TABLE column-level DDL (ADD/DROP/ALTER COLUMN) operations.
Fix Area: SQL Server Engine
Component: Replication
Platform: All

Bug Reference: 4524294
Description: Fixes an issue in which adding a merge agent fails and throws out the following error when the subscription uses a non-default port: Msg 2560, Level 16, State 9, Procedure distribution.sys.sp_MSadd_merge_agent, Line [Batch Start Line 3] Parameter 2 is incorrect for this DBCC statement.
Fix Area: SQL Server Engine
Component: Replication
Platform: Windows

Bug Reference: 4424573
Description: Prevents logins with the ALTER ANY LOGIN permission from resetting the passwords of logins that have ALTER ANY LOGIN or IMPERSONATE ANY LOGIN permissions to avoid elevation of privilege.
Fix Area: SQL Server Engine
Component: Security Infrastructure
Platform: All

Bug Reference: 4520174
Description: Fixes an access violation that you encounter when running sp_describe_first_result_set on sys.database_ledger_digest_locations.
Fix Area: SQL Server Engine
Component: Security Infrastructure
Platform: All

Bug Reference: 4437734
Description: Prevents elevation of privilege by running SQL Agent job steps for built-in jobs with reduced permissions.
Fix Area: SQL Server Engine
Component: SQL Agent
Platform: All

Bug Reference: 4285469
Description: Fixes a vulnerability that lets users who have access to certain stored procedures perform SQL injection and run arbitrary code by using elevated privileges.
Fix Area: SQL Server Engine
Component: SQL Server Engine
Platform: All

Bug Reference: 4448818
Description: Fixes URLs in certain error messages (for example, error 14130 and error 14131).
Fix Area: SQL Server Engine
Component: SQL Server Engine
Platform: All

Bug Reference: 2693201
Description: Fixes an issue in which the log files shrink beyond the specified target size under certain operations when you run the DBCC SHRINKFILE command.
Fix Area: SQL Server Engine
Component: Storage Management
Platform: All