Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix CVE-2023-32697 #1731

Closed
wants to merge 1 commit into from
Closed

Fix CVE-2023-32697 #1731

wants to merge 1 commit into from

Conversation

vmmusings
Copy link
Member

@vmmusings vmmusings commented Jun 12, 2023
edited
Loading

Description

Resolved CVE-2023-32697.

Issues Resolved

[List any issues this PR will resolve]

Check List

  • New functionality includes testing.
    • All tests pass, including unit test, integration test and doctest
  • New functionality has been documented.
    • New functionality has javadoc added
    • New functionality has user manual doc added
  • Commits are signed per the DCO using --signoff

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

@vmmusings
Resolved CVE https://advisories.aws.barahmand.com/advisory/CVE-2023-3…
4b08dc2 
…2697

Signed-off-by: Vamsi Manohar <reddyvam@amazon.com>
@vmmusings vmmusings changed the title Resolved CVE https://advisories.aws.barahmand.com/advisory/CVE-2023-3… Resolved CVE https://github.com/advisories/GHSA-6phf-6h5g-97j2 Jun 12, 2023
@vmmusings vmmusings changed the title Resolved CVE https://github.com/advisories/GHSA-6phf-6h5g-97j2 Resolved CVE-2023-32697 Jun 12, 2023
@vmmusings vmmusings self-assigned this Jun 12, 2023
@codecov
Copy link

codecov bot commented Jun 12, 2023
edited
Loading

Codecov Report

Merging #1731 (4b08dc2) into main (bd9b180) will not change coverage.
The diff coverage is n/a.

@@            Coverage Diff            @@
##               main    #1731   +/-   ##
=========================================
  Coverage     97.30%   97.30%           
  Complexity     4326     4326           
=========================================
  Files           385      385           
  Lines         10807    10807           
  Branches        762      762           
=========================================
  Hits          10516    10516           
  Misses          284      284           
  Partials          7        7
Flag Coverage Δ
sql-engine 97.30% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

Yury-Fridlyand
Yury-Fridlyand requested changes Jun 12, 2023
View reviewed changes
Copy link
Collaborator

@Yury-Fridlyand Yury-Fridlyand left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Correctness test fails due to this changes (SQLCorrectnessIT).

@vmmusings
Copy link
Member Author

Correctness test fails due to this changes (SQLCorrectnessIT).

xerial/sqlite-jdbc#763
In the updated version, the default evaluation of log(x) has changed from ln(x) to log10(x), which is a breaking change.

@vmmusings vmmusings changed the title Resolved CVE-2023-32697 Fix CVE-2023-32697 Jun 12, 2023
@Yury-Fridlyand
Copy link
Collaborator

A duplicate of #1667 actually

@vmmusings vmmusings closed this Jun 12, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Yury-Fridlyand Yury-Fridlyand Yury-Fridlyand requested changes

@rupal-bq rupal-bq rupal-bq approved these changes

@YANG-DB YANG-DB YANG-DB approved these changes

@pjfitzgibbons pjfitzgibbons Awaiting requested review from pjfitzgibbons

@ps48 ps48 Awaiting requested review from ps48 ps48 is a code owner

@kavithacm kavithacm Awaiting requested review from kavithacm kavithacm is a code owner

@derek-ho derek-ho Awaiting requested review from derek-ho derek-ho is a code owner

@joshuali925 joshuali925 Awaiting requested review from joshuali925 joshuali925 is a code owner

@dai-chen dai-chen Awaiting requested review from dai-chen dai-chen is a code owner

@mengweieric mengweieric Awaiting requested review from mengweieric mengweieric is a code owner

@Swiddis Swiddis Awaiting requested review from Swiddis Swiddis is a code owner

@penghuo penghuo Awaiting requested review from penghuo penghuo is a code owner

@seankao-az seankao-az Awaiting requested review from seankao-az seankao-az is a code owner

@MaxKsyunz MaxKsyunz Awaiting requested review from MaxKsyunz MaxKsyunz is a code owner

@anirudha anirudha Awaiting requested review from anirudha anirudha is a code owner

@forestmvey forestmvey Awaiting requested review from forestmvey forestmvey is a code owner

@acarbonetto acarbonetto Awaiting requested review from acarbonetto acarbonetto is a code owner

@GumpacG GumpacG Awaiting requested review from GumpacG GumpacG is a code owner

Assignees

@vmmusings vmmusings

Labels
backport 1.x backport 2.x
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@vmmusings @Yury-Fridlyand @YANG-DB @rupal-bq