Описание
An issue in the qst_vec_get_int64 component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| virtuoso-opensource | fixed | 7.2.12+dfsg-0.2 | package | |
| virtuoso-opensource | no-dsa | bookworm | package | |
| virtuoso-opensource | postponed | bullseye | package |
Примечания
https://github.com/openlink/virtuoso-opensource/issues/1205
https://github.com/openlink/virtuoso-opensource/commit/de5a2fd87577b8bd72ce009fe6b9d374b5d94742 (v7.2.12)
EPSS
Связанные уязвимости
An issue in the qst_vec_get_int64 component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
An issue in the qst_vec_get_int64 component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
An issue in the qst_vec_get_int64 component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
An issue in the qst_vec_get_int64 component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
Уязвимость компонента qst_vec_get_int64 платформы разработки веб-приложений virtuoso-opensource, позволяющая нарушителю вызвать отказ в обслуживании
EPSS