Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9fdf5dcc by Salvatore Bonaccorso at 2024-11-04T20:32:35+01:00
Mark clickhouse as removed from unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15099,7 +15099,7 @@ CVE-2024-42901 (A CSV injection vulnerability in Lime
Survey v6.5.12 allows atta
CVE-2024-41718
REJECTED
CVE-2024-41436 (ClickHouse v24.3.3.102 was discovered to contain a buffer
overflow via ...)
- - clickhouse <unfixed> (bug #1082054)
+ - clickhouse <removed> (bug #1082054)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <postponed> (Minor issue)
NOTE: https://github.com/ClickHouse/ClickHouse/issues/65520
@@ -22417,7 +22417,7 @@ CVE-2024-6923 (There is a MEDIUM severity vulnerability
affecting CPython. The
NOTE:
https://github.com/python/cpython/commit/06f28dc236708f72871c64d4bc4b4ea144c50147
(v3.10.15)
NOTE:
https://github.com/python/cpython/commit/f7be505d137a22528cb0fc004422c0081d5d90e6
(v3.9.20)
CVE-2024-6873 (It is possible to crash or redirect the execution flow of the
ClickHou ...)
- - clickhouse <unfixed> (bug #1077820)
+ - clickhouse <removed> (bug #1077820)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
NOTE:
https://github.com/ClickHouse/ClickHouse/security/advisories/GHSA-432f-r822-j66f
@@ -65475,7 +65475,7 @@ CVE-2024-23333 (LDAP Account Manager (LAM) is a
webfrontend for managing entries
CVE-2024-22453 (Dell PowerEdge Server BIOS contains a heap-based buffer
overflow vulne ...)
NOT-FOR-US: Dell
CVE-2024-22412 (ClickHouse is an open-source column-oriented database
management syste ...)
- - clickhouse <unfixed> (bug #1067178)
+ - clickhouse <removed> (bug #1067178)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
[buster] - clickhouse <postponed> (Minor issue; can be fixed in next
update)
@@ -84431,7 +84431,7 @@ CVE-2023-49085 (Cacti provides an operational
monitoring and fault management fr
NOTE:
https://github.com/Cacti/cacti/commit/5f451bc680d7584525d18026836af2a1e31b2188
(release/1.2.26)
NOTE: Requires multi-pollers setup
CVE-2023-48704 (ClickHouse is an open-source column-oriented database
management syste ...)
- - clickhouse <unfixed> (bug #1059367)
+ - clickhouse <removed> (bug #1059367)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
[buster] - clickhouse <no-dsa> (Minor issue)
@@ -84583,7 +84583,7 @@ CVE-2023-48685 (Railway Reservation System v1.0 is
vulnerable to multiple Unauth
CVE-2023-48308 (Nextcloud/Cloud is a calendar app for Nextcloud. An attacker
can gain ...)
NOT-FOR-US: Nextcloud calendar app
CVE-2023-48298 (ClickHouse\xae is an open-source column-oriented database
management s ...)
- - clickhouse <unfixed> (bug #1059261)
+ - clickhouse <removed> (bug #1059261)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
[buster] - clickhouse <no-dsa> (Minor issue)
@@ -84958,7 +84958,7 @@ CVE-2023-47507 (Deserialization of Untrusted Data
vulnerability in Master Slider
CVE-2023-47236 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
NOT-FOR-US: WordPress plugin
CVE-2023-47118 (ClickHouse\xae is an open-source column-oriented database
management s ...)
- - clickhouse <unfixed> (bug #1059261)
+ - clickhouse <removed> (bug #1059261)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
[buster] - clickhouse <no-dsa> (Minor issue)
@@ -161765,13 +161765,13 @@ CVE-2022-44013 (An issue was discovered in Simmeth
Lieferantenmanager before 5.6
CVE-2022-44012 (An issue was discovered in
/DS/LM_API/api/SelectionService/InsertQuery ...)
NOT-FOR-US: Simmeth Lieferantenmanager
CVE-2022-44011 (An issue was discovered in ClickHouse before 22.9.1.2603. An
authentic ...)
- - clickhouse <unfixed> (bug #1059261)
+ - clickhouse <removed> (bug #1059261)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
[buster] - clickhouse <postponed> (Minor issue, DoS)
NOTE: https://github.com/ClickHouse/ClickHouse/pull/40241
CVE-2022-44010 (An issue was discovered in ClickHouse before 22.9.1.2603. An
attacker ...)
- - clickhouse <unfixed> (bug #1059261)
+ - clickhouse <removed> (bug #1059261)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
[buster] - clickhouse <postponed> (Minor issue, DoS)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9fdf5dcc69224c0a046a0a442101cd5803d69dbf
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9fdf5dcc69224c0a046a0a442101cd5803d69dbf
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
