[ubuntu/mantic-updates] virtuoso-opensource 7.2.5.1+dfsg1-0.3ubuntu1.1 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Thu Jun 13 09:28:20 UTC 2024
virtuoso-opensource (7.2.5.1+dfsg1-0.3ubuntu1.1) mantic-security; urgency=medium
* SECURITY UPDATE: SQL Injection
- debian/patches/CVE-2023-31607.patch: Fixed missing check for max
number of key parts
- debian/patches/CVE-2023-31608.patch: Fixed 64bit arith overflow
- debian/patches/CVE-2023-31609.patch: Fixed issue if original dfe
not there; see error in optimizer
- debian/patches/CVE-2023-31610-31619-31623-31625-31628.patch: Fixed
missing arguments in table def
- debian/patches/CVE-2023-31611.patch: Fixed expand column list
during parsing
- debian/patches/CVE-2023-31612.patch: Fixed missing check for a
qexp to continue with
- debian/patches/CVE-2023-31613.patch: Added missing reuse check for
dv bin
- debian/patches/CVE-2023-31614.patch: Fixed compare only up to cha
key parts
- debian/patches/CVE-2023-31615.patch: Fixed do not change col_dtp
if already set before
- debian/patches/CVE-2023-31616.patch: Fixed 64bit arith exception
- debian/patches/CVE-2023-31617.patch: Fixed save/restore temp refs
- debian/patches/CVE-2023-31618.patch: Fixed non-terminal in union
branch is not supported
- CVE-2023-31607
- CVE-2023-31608
- CVE-2023-31609
- CVE-2023-31610
- CVE-2023-31611
- CVE-2023-31612
- CVE-2023-31613
- CVE-2023-31614
- CVE-2023-31615
- CVE-2023-31616
- CVE-2023-31617
- CVE-2023-31618
- CVE-2023-31619
- CVE-2023-31623
- CVE-2023-31625
- CVE-2023-31628
Date: 2024-06-13 01:27:10.865104+00:00
Changed-By: Allen Huang <allen.huang at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/virtuoso-opensource/7.2.5.1+dfsg1-0.3ubuntu1.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the mantic-changes
mailing list