Enquiry for New version release

132 views

Skip to first unread message

arun kumar

unread,

Jan 27, 2023, 7:48:36 AM1/27/23

to H2 Database

I want to know if we can expect a new version of H2 database. the latest version is vulnerable to remote code execution.

Evgenij Ryazanov

unread,

Jan 27, 2023, 8:58:54 AM1/27/23

to H2 Database

Hello!

What exactly do you mean? There are no known vulnerabilities in this version.

CVE-2022-45868 / sonatype-2022-624. is a fake security report and there is nothing to fix on H2 side. If some code checking tools reports it to you, let it vendor know about that, usually such tools have lists of false positives due to low quality of security databases.