CVE-2024-22682
CVE-2024-22682 concerns DuckDB and its extension-template. Affected: DuckDB versions prior to 0.9.3 and DuckDB extension-template prior to 0.9.3. Issue: malicious extension injection via the custom extension feature. Impact: allows injection through the extension mechanism as described by multipl...