[GHSA-x9vc-6hfv-hg8c] Npgsql vulnerable to SQL Injection via Protocol Message Size Overflow #4387

explunit · 2024-05-10T19:00:32Z

Updates

Affected products

Comments
The nuget API feed does not match the data listed here, e.g. 7.0.7 is not considered a patched version

https://api.nuget.org/v3-vulnerabilities/2024.05.09.01.15.07/2024.05.10.13.15.11/vulnerability.update.json

github · 2024-05-10T19:00:32Z

Hi there @paul-gerste-sonarsource and @NinoFloris! A community member has suggested an improvement to your security advisory. If approved, this change will affect the global advisory listed at github.com/advisories. It will not affect the version listed in your project repository.

This change will be reviewed by our Security Curation Team. If you have thoughts or feedback, please share them in a comment here! If this PR has already been closed, you can start a new community contribution for this advisory

explunit · 2024-05-13T16:39:03Z

Seems to have been corrected in the meantime

Improve GHSA-x9vc-6hfv-hg8c

1c2a68a

github-actions bot changed the base branch from main to explunit/advisory-improvement-4387 May 10, 2024 19:03

explunit closed this May 13, 2024

github-actions bot deleted the explunit-GHSA-x9vc-6hfv-hg8c branch May 13, 2024 16:39

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[GHSA-x9vc-6hfv-hg8c] Npgsql vulnerable to SQL Injection via Protocol Message Size Overflow #4387

[GHSA-x9vc-6hfv-hg8c] Npgsql vulnerable to SQL Injection via Protocol Message Size Overflow #4387

explunit commented May 10, 2024

github commented May 10, 2024

explunit commented May 13, 2024

[GHSA-x9vc-6hfv-hg8c] Npgsql vulnerable to SQL Injection via Protocol Message Size Overflow #4387

[GHSA-x9vc-6hfv-hg8c] Npgsql vulnerable to SQL Injection via Protocol Message Size Overflow #4387

Conversation

explunit commented May 10, 2024

github commented May 10, 2024

explunit commented May 13, 2024