[Git][security-tracker-team/security-tracker][master] Track fixed version for clickhouse via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Nov 5 13:35:38 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
76383380 by Salvatore Bonaccorso at 2022-11-05T14:33:47+01:00
Track fixed version for clickhouse via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -77332,7 +77332,7 @@ CVE-2021-43306 (An exponential ReDoS (Regular Expression Denial of Service) can
NOT-FOR-US: Node jquery-validation
CVE-2021-43305 (Heap buffer overflow in Clickhouse's LZ4 compression codec when parsin ...)
{DLA-3176-1}
- - clickhouse <unfixed> (bug #1008216)
+ - clickhouse 18.16.1+ds-7.3 (bug #1008216)
[bullseye] - clickhouse <no-dsa> (Minor issue)
NOTE: https://github.com/ClickHouse/ClickHouse/commit/2aea1c8d4a5be320365472052d8a48bf69fd9fe9 (v21.9.1.7685)
NOTE: https://github.com/ClickHouse/ClickHouse/commit/6d83eacec42c7c403c99804a713a9d38caa4a45d (v21.9.1.7685)
@@ -77340,7 +77340,7 @@ CVE-2021-43305 (Heap buffer overflow in Clickhouse's LZ4 compression codec when
NOTE: https://jfrog.com/blog/7-rce-and-dos-vulnerabilities-found-in-clickhouse-dbms/
CVE-2021-43304 (Heap buffer overflow in Clickhouse's LZ4 compression codec when parsin ...)
{DLA-3176-1}
- - clickhouse <unfixed> (bug #1008216)
+ - clickhouse 18.16.1+ds-7.3 (bug #1008216)
[bullseye] - clickhouse <no-dsa> (Minor issue)
NOTE: https://github.com/ClickHouse/ClickHouse/commit/2aea1c8d4a5be320365472052d8a48bf69fd9fe9 (v21.9.1.7685)
NOTE: https://github.com/ClickHouse/ClickHouse/commit/6d83eacec42c7c403c99804a713a9d38caa4a45d (v21.9.1.7685)
@@ -81745,7 +81745,7 @@ CVE-2021-42389 (Divide-by-zero in Clickhouse's Delta compression codec when pars
NOTE: https://jfrog.com/blog/7-rce-and-dos-vulnerabilities-found-in-clickhouse-dbms/
CVE-2021-42388 (Heap out-of-bounds read in Clickhouse's LZ4 compression codec when par ...)
{DLA-3176-1}
- - clickhouse <unfixed> (bug #1008216)
+ - clickhouse 18.16.1+ds-7.3 (bug #1008216)
[bullseye] - clickhouse <no-dsa> (Minor issue)
NOTE: https://github.com/ClickHouse/ClickHouse/commit/2aea1c8d4a5be320365472052d8a48bf69fd9fe9 (v21.9.1.7685)
NOTE: https://github.com/ClickHouse/ClickHouse/commit/6d83eacec42c7c403c99804a713a9d38caa4a45d (v21.9.1.7685)
@@ -81753,7 +81753,7 @@ CVE-2021-42388 (Heap out-of-bounds read in Clickhouse's LZ4 compression codec wh
NOTE: https://jfrog.com/blog/7-rce-and-dos-vulnerabilities-found-in-clickhouse-dbms/
CVE-2021-42387 (Heap out-of-bounds read in Clickhouse's LZ4 compression codec when par ...)
{DLA-3176-1}
- - clickhouse <unfixed> (bug #1008216)
+ - clickhouse 18.16.1+ds-7.3 (bug #1008216)
[bullseye] - clickhouse <no-dsa> (Minor issue)
NOTE: https://github.com/ClickHouse/ClickHouse/commit/2aea1c8d4a5be320365472052d8a48bf69fd9fe9 (v21.9.1.7685)
NOTE: https://github.com/ClickHouse/ClickHouse/commit/6d83eacec42c7c403c99804a713a9d38caa4a45d (v21.9.1.7685)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7638338098955e8fe7579586647f6f8d03d98b2f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7638338098955e8fe7579586647f6f8d03d98b2f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221105/bb835507/attachment.htm>
More information about the debian-security-tracker-commits
mailing list