4 matches found
airflow-dbt-python (>=0.2.0 <=3.6.0), alvin-cli (>=0.0.1a0 <=1.3.0rc1) +288 more potentially affected by CVE-2024-40637 via dbt-core (>=0.14.0 <=1.6.13)
dbt-core PYPI version =0.14.0, =0.2.0, =0.0.1a0, =1.0.0a1, =0.0.3, =0.3.8, =1.0.6, =0.2.0, =0.11.2, =0.5.6, =0.0.1a1, =0.4.0, =0.5.1, =0.6.2 and more Source cves: CVE-2024-40637 Source advisory: OSV:PYSEC-2024-66...
airflow-dbt-python (>=0.2.0 <=3.6.0), alvin-cli (>=0.0.1a0 <=1.3.0rc1) +288 more potentially affected by CVE-2024-36105 via dbt-core (>=0.14.0 <=1.6.14)
dbt-core PYPI version =0.14.0, =0.2.0, =0.0.1a0, =1.0.0a1, =0.0.3, =0.3.8, =1.0.6, =0.2.0, =0.11.2, =0.5.6, =0.0.1a1, =0.4.0, =0.5.1, =0.6.2 and more Source cves: CVE-2024-36105 Source advisory: OSV:GHSA-PMRX-695R-4349...
dagster-dbt (>=0.20.5 <=0.21.6), dbt-postgres (>=1.7.0 <=1.7.12) +8 more potentially affected by unknown CVE via dbt-core (>=1.7.0 <=1.7.12)
dbt-core PYPI version =1.7.0, =0.20.5, =1.7.0, =0.0.2, =1.7.0, =0.0.4, =0.203.0.dev5, =0.0.1rc8, =0.4.2, =0.8.0 Source cves: unknown CVE Source advisory: OSV:GHSA-P72Q-H37J-3HQ7...
PT-2024-40393 · Dbt-Core +1 · Dbt-Core +1
Name of the Vulnerable Software and Affected Versions: dbt-core versions 1.6.0 through 1.6.12 dbt-core versions 1.7.0 through 1.7.12 Description: The issue is related to a recursion error in the sqlparse library used by dbt-core. This error can be triggered by parsing a specific SQL query, such a...