Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Steampipe Embedded Database Vulnerabilities #4461

Open
Ike-stackArmor opened this issue Dec 26, 2024 · 1 comment
Open

Steampipe Embedded Database Vulnerabilities #4461

Ike-stackArmor opened this issue Dec 26, 2024 · 1 comment
Labels
enhancement New feature or request

Comments

@Ike-stackArmor
Copy link

Is your feature request related to a problem? Please describe.
Steampipe is using PostgreSQL version 14.2 which has known vulnerabilities for its embedded postgresql database. Our scanners are reporting the following vulnerabilities:

Describe the solution you'd like
Steampipe embedded DB should be upgraded to PostgreSQL version 14.12 or later

Describe alternatives you've considered
N/A

Additional context
Vulnerabilities were discovered through an SSH scan of a Rhel8 instance that leverages steampipe
@Ike-stackArmor Ike-stackArmor added the enhancement New feature or request label Dec 26, 2024
@pskrbasu
Copy link
Contributor

@Ike-stackArmor Thank you for bringing this to our attention. I will look at the vulnerabilities and update you on our stance.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@pskrbasu @Ike-stackArmor