[Git][security-tracker-team/security-tracker][master] CVE-2021-25263/clickhouse - not affected, vulnerable code introduced later
Neil Williams (@codehelp)
codehelp at debian.org
Fri Sep 3 14:27:26 BST 2021
Neil Williams pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0baae36b by Neil Williams at 2021-09-03T14:27:06+01:00
CVE-2021-25263/clickhouse - not affected, vulnerable code introduced later
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -36784,8 +36784,9 @@ CVE-2021-25265 (A malicious website could execute code remotely in Sophos Connec
CVE-2021-25264 (In multiple versions of Sophos Endpoint products for MacOS, a local at ...)
NOT-FOR-US: Sophos
CVE-2021-25263 (Clickhouse prior to versions v20.8.18.32-lts, v21.1.9.41-stable, v21.2 ...)
- - clickhouse <undetermined>
- TODO: check details
+ - clickhouse <not-affected> (Vulnerable code introduced later)
+ NOTE: https://github.com/ClickHouse/ClickHouse/pull/22822
+ NOTE: Vulnerable code introduced at https://github.com/kitaisreal/ClickHouse/commit/ea8994b9e4fd4434b296ffccbfbf60c3c65a50d1
CVE-2021-25262
RESERVED
CVE-2021-25261
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0baae36ba4e3a4f6314333b2d4e3fe0772b05850
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0baae36ba4e3a4f6314333b2d4e3fe0772b05850
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210903/06cbc202/attachment.htm>
More information about the debian-security-tracker-commits
mailing list