Package "clickhouse"
Name: |
clickhouse
|
Description: |
This package is just an umbrella for a group of other packages,
it has no description. Description samples from packages in group:
- column-oriented database system (cli client)
- column-oriented database system (common files)
- column-oriented database system (server runner)
- column-oriented database system (tools)
|
Latest version: |
18.16.1+ds-7ubuntu0.1 |
Release: |
focal (20.04) |
Level: |
security |
Repository: |
universe |
Links
Other versions of "clickhouse" in Focal
Packages in group
Deleted packages are displayed in grey.
Changelog
clickhouse (18.16.1+ds-7ubuntu0.1) focal-security; urgency=medium
* SECURITY UPDATE: heap out-of-bound read
- debian/patches/CVE-2021-4238x-and-4330x.patch: better code around
decompression
- CVE-2021-42387
- CVE-2021-42388
* SECURITY UPDATE: heap buffer overflow
- debian/patches/CVE-2021-4238x-and-4330x.patch: better code around
decompression
- CVE-2021-43304
- CVE-2021-43305
-- Shishir Subedi <email address hidden> Tue, 30 Jul 2024 08:19:51 +0545
|
CVE-2021-4238 |
Randomly-generated alphanumeric strings contain significantly less entropy than expected. The RandomAlphaNumeric and CryptoRandomAlphaNumeric functio |
CVE-2021-42387 |
Heap out-of-bounds read in Clickhouse's LZ4 compression codec when parsing a malicious query. As part of the LZ4::decompressImpl() loop, a 16-bit uns |
CVE-2021-42388 |
Heap out-of-bounds read in Clickhouse's LZ4 compression codec when parsing a malicious query. As part of the LZ4::decompressImpl() loop, a 16-bit uns |
CVE-2021-43304 |
Heap buffer overflow in Clickhouse's LZ4 compression codec when parsing a malicious query. There is no verification that the copy operations in the L |
CVE-2021-43305 |
Heap buffer overflow in Clickhouse's LZ4 compression codec when parsing a malicious query. There is no verification that the copy operations in the L |
|
About
-
Send Feedback to @ubuntu_updates