Lucene search
GoogleOSV:CVE-2021-42388HistoryMar 14, 2022 - 11:15 p.m.
CVE-2021-42388
2022-03-1423:15:07
Google
osv.dev
10
clickhouse
lz4
compressioncodec
outofboundsread
maliciousquery
Heap out-of-bounds read in Clickhouse’s LZ4 compression codec when parsing a malicious query. As part of the LZ4::decompressImpl() loop, a 16-bit unsigned user-supplied value (‘offset’) is read from the compressed data. The offset is later used in the length of a copy operation, without checking the lower bounds of the source of the copy operation.
Related
ubuntucve
ubuntucve
CVE-2021-42388
2022-03-14 00:00:00
cvelist
cvelist
CVE-2021-42388
2022-03-14 00:00:00
debiancve
debiancve
CVE-2021-42388
2022-03-14 23:15:07
prion
prion
Heap overflow
2022-03-14 23:15:00
nvd
nvd
CVE-2021-42388
2022-03-14 23:15:07
cve
cve
CVE-2021-42388
2022-03-14 23:15:07
osv
osv
clickhouse - security update
2022-11-03 00:00:00
clickhouse vulnerabilities
2024-07-31 08:17:56
ubuntu
ubuntu
ClickHouse vulnerabilities
2024-07-31 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6933-1)
2024-08-01 00:00:00
Debian: Security Advisory (DLA-3176-1)
2022-11-05 00:00:00
nessus
nessus
Debian DLA-3176-1 : clickhouse - LTS security update
2022-11-09 00:00:00
Ubuntu 20.04 LTS : ClickHouse vulnerabilities (USN-6933-1)
2024-07-31 00:00:00
debian
debian
[SECURITY] [DLA 3176-1] clickhouse security update
2022-11-04 06:11:35
thn
thn
Multiple Flaws Uncovered in ClickHouse OLAP Database System for Big Data
2022-03-16 07:53:00