Skip to:

Skip to Jira Navigation
Skip to Side Navigation
Skip to Main Content

update HyperSQL 2.7.2 (HSQLDB) for QoQ (CVE)

Description

Hi,
I want to report the update 2.4.0 for HyperSQL

I would like to receive extensions update.

CVE in all previous versions https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41853

Attachments

2

Linked issues

causes

Upgrading to v5.4.0.65 failed due to Felix installation

Regression with QofQ - $ in column names no longer work

5.4.3.2 QoQ incompatible data type with subquery IN operator

5.4.3.2 QofQ rounds decimal column type to integer when joining

is blocked by

update provider caches stale maven meta data

relates to

verifying a hsqldb datasource crashes

update exasol extension to 7.1.16 due to CVE

Many vulnerable libs in Lucee preventing use in Government shops

HSQLDB Extension throws error with 2.4.0 version

Activity

Show:

Zac Spitzer 2 June 2023 at 11:11

Zac Spitzer 2 June 2023 at 10:24

Pothys - MitrahSoft 2 June 2023 at 06:03
Edited

I've checked this ticket with lucee version 6.0.0.419-SNAPSHOT. Now the HyperSQL DB has been updated to version 2.7.2

Zac Spitzer 31 May 2023 at 16:35

Zac Spitzer 31 May 2023 at 15:01
Edited

hsqldb 2.7.2 was released on may 29, isn’t on maven so far, but it’s on sonartype

Fixed

Details
Assignee
Zac Spitzer
Reporter
Ionut Ivan
Labels
QofQdatasourcehsqldbjavasecurity
New Issue warning screen
Before you create a new Issue, please post to the mailing list first https://dev.lucee.org
Once the issue has been verified, one of the Lucee team will ask you to file an issue
Sprint
None
Fix versions
6.0.0.419
5.4.0.66
Priority
Critical

Created 29 September 2017 at 10:00

Updated 15 September 2023 at 12:54

Resolved 2 June 2023 at 08:49