26 matches found
Fedora: Security Advisory (FEDORA-2025-d2d3a5fa79)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 42 : python-sqlparse (2025-d2d3a5fa79)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-d2d3a5fa79 advisory. This update backports the upstream fixes for CVE-2023-30608 and CVE-2024-4340. It also enables the test suite and corrects the SPDX license...
Debian dla-4000 : python-sqlparse-doc - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4000 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4000-1 [email protected]...
SUSE SLES15: libprotobuf-lite25_1_0 / libprotobuf25_1_0 / libprotoc25_1_0 / etc (SUSE-SU-SUSE-RU-2024:1637-3)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-SUSE-RU-2024:1637-3 advisory. - Add python311 cloud services packages and dependencies jscPED-7987, jscPED-6697 - Bellow 5 binaries Obsolete the python3.6...
SUSE SLED15: libcrc32c-devel / libcrc32c1 / python311-apipkg / etc (SUSE-SU-SUSE-RU-2024:1637-2)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-SUSE-RU-2024:1637-2 advisory. - Add python311 cloud services packages and dependencies jscPED-7987, jscPED-6697 - Bellow 5...
SUSE SLED15: libcrc32c-devel / libcrc32c1 / libprotobuf-lite25_1_0 / etc (SUSE-SU-SUSE-RU-2024:1637-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-SUSE-RU-2024:1637-1 advisory. - Add python311 cloud services packages and dependencies jscPED-7987, jscPED-6697 - Bellow 5...
RHEL 8 : RHUI 4.5.0 - Security, Bug Fixes, and Enhancements (Moderate) (RHSA-2023:4591)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:4591 advisory. Red Hat Update Infrastructure RHUI offers a highly scalable, highly redundant framework that enables you to manage repositories and content...
SUSE-SU-2023:2787-1 Security update for python-sqlparse
This update for python-sqlparse fixes the following issues: - CVE-2023-30608: Fixed a regular rexpression that is vulnerable to ReDOS bsc1210617...
SUSE-SU-2023:2693-1 Security update for python-sqlparse
This update for python-sqlparse fixes the following issues: - CVE-2023-30608: Fixed a regular rexpression that is vulnerable to ReDOS bsc1210617...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python-sqlparse (SUSE-SU-2023:2619-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:2619-1 advisory. - CVE-2023-30608: Fixed a Regular Expression Denial of Service ReDOS vulnerability bsc1210617. Tenable ha...
SUSE SLED15 / SLES15 Security Update : python-sqlparse (SUSE-SU-2023:2462-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:2462-1 advisory. - CVE-2023-30608: Fixed a Regular Expression Denial of Service ReDOS vulnerability bsc1210617. Tenable has extracted th...
Mageia: Security Advisory (MGASA-2023-0183)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2023-0183 Updated python-sqlparse packages fix security vulnerability
ReDoS Regular Expression Denial of Service CVE-2023-30608...
Updated python-sqlparse packages fix security vulnerability
ReDoS Regular Expression Denial of Service CVE-2023-30608...
[SECURITY] [DLA 3425-1] sqlparse security update
Debian LTS Advisory DLA-3425-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin May 16, 2023 https://wiki.debian.org/LTS Package : sqlparse Version : 0.2.4-1+deb10u1 CVE ID : CVE-2023-30608 Debian Bug : 1034615 Erik Krogh Kristensen discovered that sqlparse, a...
Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.04 : SQL parse vulnerability (USN-6064-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.04 host has packages installed that are affected by a vulnerability as referenced in the USN-6064-1 advisory. It was discovered that SQL parse incorrectly handled certain regular expression. An attacker could possibly use this issue to caus...
OESA-2023-1279 python-sqlparse security update
sqlparse is a non-validating SQL parser module. It provides support for parsing, splitting and formatting SQL statements. Security Fixes: sqlparse is a non-validating SQL parser module for Python. In affected versions the SQL parser contains a regular expression that is vulnerable to ReDoS Regula...
agnostic (=1.0.3), airflow-dbt-python (>=0.2.0 <=0.14.3) +264 more potentially affected by CVE-2023-30608 via sqlparse (>=0.2.1 <=0.4.3)
sqlparse PYPI version =0.2.1, =0.2.0, =0.8.0, =1.0.0, =0.1.1, =0.7.11, =0.1.0, =0.1.2, =0.0.44, =0.1.0, =0.1.0, =0.5.1 and more Source cves: CVE-2023-30608 Source advisory: OSV:GHSA-RRM6-WVJ7-CWH2...
CVE-2023-30608
sqlparse is a non-validating SQL parser module for Python. In affected versions the SQL parser contains a regular expression that is vulnerable to ReDoS Regular Expression Denial of Service. This issue was introduced by commit e75e358. The vulnerability may lead to Denial of Service DoS. This...
CVE-2023-30608
sqlparse is a non-validating SQL parser module for Python. In affected versions the SQL parser contains a regular expression that is vulnerable to ReDoS Regular Expression Denial of Service. This issue was introduced by commit e75e358. The vulnerability may lead to Denial of Service DoS. This...