Skip to content
GitLab
Next
Menu
Why GitLab
Pricing
Contact Sales
Explore
Why GitLab
Pricing
Contact Sales
Explore
Sign in
Get free trial
Primary navigation
Search or go to…
Project
A
advisory-database
Manage
Activity
Members
Labels
Plan
Issues
Issue boards
Milestones
Iterations
Wiki
Requirements
Code
Merge requests
Repository
Branches
Commits
Tags
Repository graph
Compare revisions
Snippets
Locked files
Build
Pipelines
Jobs
Pipeline schedules
Test cases
Artifacts
Deploy
Releases
Package Registry
Container Registry
Model registry
Operate
Environments
Terraform modules
Monitor
Incidents
Service Desk
Analyze
Value stream analytics
Contributor analytics
CI/CD analytics
Repository analytics
Code review analytics
Issue analytics
Insights
Model experiments
Help
Help
Support
GitLab documentation
Compare GitLab plans
Community forum
Contribute to GitLab
Provide feedback
Privacy statement
Keyboard shortcuts
?
What's new
6
Snippets
Groups
Projects
Show more breadcrumbs
GitLab.org
security-products
advisory-database
Commits
70365cba
Commit
70365cba
authored
2 years ago
by
Michael Henriksen
Browse files
Options
Downloads
Patches
Plain Diff
Update CVE-2022-26112.yml
parent
66afb690
No related branches found
No related tags found
Loading
Pipeline
#652758152
passed
2 years ago
Stage: test
Changes
1
Pipelines
1
Hide whitespace changes
Inline
Side-by-side
Showing
1 changed file
maven/org.apache.pinot/pinot/CVE-2022-26112.yml
+1
-1
1 addition, 1 deletion
maven/org.apache.pinot/pinot/CVE-2022-26112.yml
with
1 addition
and
1 deletion
maven/org.apache.pinot/pinot/CVE-2022-26112.yml
+
1
−
1
View file @
70365cba
...
...
@@ -3,7 +3,7 @@ identifier: "CVE-2022-26112"
identifiers
:
-
"
CVE-2022-26112"
package_slug
:
"
maven/org.apache.pinot/pinot"
title
:
"
TODO:
Add
proper
title
"
title
:
"
Improper
Control
of
Generation
of
Code
('Code
Injection')
"
description
:
"
In
0.10.0
or
older
versions
of
Apache
Pinot,
Pinot
query
endpoint
and
realtime
ingestion
layer
has
a
vulnerability
in
unprotected
environments
due
to
a
groovy
function
support.
In
order
to
avoid
this,
we
disabled
the
groovy
function
...
...
This diff is collapsed.
Click to expand it.
Preview
0%
Loading
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Save comment
Cancel
Please
register
or
sign in
to comment