Описание
An issue in the sqlc_add_distinct_node component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| virtuoso-opensource | fixed | 7.2.12+dfsg-0.2 | package | |
| virtuoso-opensource | no-dsa | bookworm | package | |
| virtuoso-opensource | postponed | bullseye | package |
Примечания
https://github.com/openlink/virtuoso-opensource/issues/1210
https://github.com/openlink/virtuoso-opensource/commit/7f529772659db67c720f32898abbbe97b0d25a34 (v7.2.12)
EPSS
Связанные уязвимости
An issue in the sqlc_add_distinct_node component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
An issue in the sqlc_add_distinct_node component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
An issue in the sqlc_add_distinct_node component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
An issue in the sqlc_add_distinct_node component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
ELSA-2025-4039: virtuoso-opensource security update (IMPORTANT)
EPSS