[Git][security-tracker-team/security-tracker][master] Mark clickhouse as removed from unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Nov 4 19:33:05 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9fdf5dcc by Salvatore Bonaccorso at 2024-11-04T20:32:35+01:00
Mark clickhouse as removed from unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15099,7 +15099,7 @@ CVE-2024-42901 (A CSV injection vulnerability in Lime Survey v6.5.12 allows atta
CVE-2024-41718
REJECTED
CVE-2024-41436 (ClickHouse v24.3.3.102 was discovered to contain a buffer overflow via ...)
- - clickhouse <unfixed> (bug #1082054)
+ - clickhouse <removed> (bug #1082054)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <postponed> (Minor issue)
NOTE: https://github.com/ClickHouse/ClickHouse/issues/65520
@@ -22417,7 +22417,7 @@ CVE-2024-6923 (There is a MEDIUM severity vulnerability affecting CPython. The
NOTE: https://github.com/python/cpython/commit/06f28dc236708f72871c64d4bc4b4ea144c50147 (v3.10.15)
NOTE: https://github.com/python/cpython/commit/f7be505d137a22528cb0fc004422c0081d5d90e6 (v3.9.20)
CVE-2024-6873 (It is possible to crash or redirect the execution flow of the ClickHou ...)
- - clickhouse <unfixed> (bug #1077820)
+ - clickhouse <removed> (bug #1077820)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
NOTE: https://github.com/ClickHouse/ClickHouse/security/advisories/GHSA-432f-r822-j66f
@@ -65475,7 +65475,7 @@ CVE-2024-23333 (LDAP Account Manager (LAM) is a webfrontend for managing entries
CVE-2024-22453 (Dell PowerEdge Server BIOS contains a heap-based buffer overflow vulne ...)
NOT-FOR-US: Dell
CVE-2024-22412 (ClickHouse is an open-source column-oriented database management syste ...)
- - clickhouse <unfixed> (bug #1067178)
+ - clickhouse <removed> (bug #1067178)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
[buster] - clickhouse <postponed> (Minor issue; can be fixed in next update)
@@ -84431,7 +84431,7 @@ CVE-2023-49085 (Cacti provides an operational monitoring and fault management fr
NOTE: https://github.com/Cacti/cacti/commit/5f451bc680d7584525d18026836af2a1e31b2188 (release/1.2.26)
NOTE: Requires multi-pollers setup
CVE-2023-48704 (ClickHouse is an open-source column-oriented database management syste ...)
- - clickhouse <unfixed> (bug #1059367)
+ - clickhouse <removed> (bug #1059367)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
[buster] - clickhouse <no-dsa> (Minor issue)
@@ -84583,7 +84583,7 @@ CVE-2023-48685 (Railway Reservation System v1.0 is vulnerable to multiple Unauth
CVE-2023-48308 (Nextcloud/Cloud is a calendar app for Nextcloud. An attacker can gain ...)
NOT-FOR-US: Nextcloud calendar app
CVE-2023-48298 (ClickHouse\xae is an open-source column-oriented database management s ...)
- - clickhouse <unfixed> (bug #1059261)
+ - clickhouse <removed> (bug #1059261)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
[buster] - clickhouse <no-dsa> (Minor issue)
@@ -84958,7 +84958,7 @@ CVE-2023-47507 (Deserialization of Untrusted Data vulnerability in Master Slider
CVE-2023-47236 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
NOT-FOR-US: WordPress plugin
CVE-2023-47118 (ClickHouse\xae is an open-source column-oriented database management s ...)
- - clickhouse <unfixed> (bug #1059261)
+ - clickhouse <removed> (bug #1059261)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
[buster] - clickhouse <no-dsa> (Minor issue)
@@ -161765,13 +161765,13 @@ CVE-2022-44013 (An issue was discovered in Simmeth Lieferantenmanager before 5.6
CVE-2022-44012 (An issue was discovered in /DS/LM_API/api/SelectionService/InsertQuery ...)
NOT-FOR-US: Simmeth Lieferantenmanager
CVE-2022-44011 (An issue was discovered in ClickHouse before 22.9.1.2603. An authentic ...)
- - clickhouse <unfixed> (bug #1059261)
+ - clickhouse <removed> (bug #1059261)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
[buster] - clickhouse <postponed> (Minor issue, DoS)
NOTE: https://github.com/ClickHouse/ClickHouse/pull/40241
CVE-2022-44010 (An issue was discovered in ClickHouse before 22.9.1.2603. An attacker ...)
- - clickhouse <unfixed> (bug #1059261)
+ - clickhouse <removed> (bug #1059261)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
[buster] - clickhouse <postponed> (Minor issue, DoS)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9fdf5dcc69224c0a046a0a442101cd5803d69dbf
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9fdf5dcc69224c0a046a0a442101cd5803d69dbf
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241104/7733c2ab/attachment.htm>
More information about the debian-security-tracker-commits
mailing list