You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@ignite.apache.org by "YuJue Li (Jira)" <ji...@apache.org> on 2022/05/18 10:29:00 UTC

[jira] [Commented] (IGNITE-16384) H2 database used in Ignite has high security vulnerabilities

    [ https://issues.apache.org/jira/browse/IGNITE-16384?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17538717#comment-17538717 ] 

YuJue Li commented on IGNITE-16384:
-----------------------------------

https://github.com/h2database/h2database/pull/2227

> H2 database used in Ignite has high security vulnerabilities
> ------------------------------------------------------------
>
>                 Key: IGNITE-16384
>                 URL: https://issues.apache.org/jira/browse/IGNITE-16384
>             Project: Ignite
>          Issue Type: Bug
>          Components: h2-limitation
>    Affects Versions: 2.11
>            Reporter: Anitha Sornaraja
>            Priority: Critical
>
> The H2 database used in Apache Ignite has several high security vulnerabilities. Our security scan is showing the following vulnerabilities:
> CVE-2021-42392
> CVE-2021-23463
> CVE-2022-23221
>  
> Please upgrade the version of H2 database used to 2.0.206.



--
This message was sent by Atlassian Jira
(v8.20.7#820007)