Headline
CVE-2022-3023
Use of Externally-Controlled Format String in GitHub repository pingcap/tidb prior to 6.4.0, 6.1.3.
Related news
Deserialized web security roundup: Algolia API key leak, GitHub CVE reporting, scoring CVSS scores
Your fortnightly rundown of AppSec vulnerabilities, new hacking techniques, and other cybersecurity news
GHSA-7fxj-fr3v-r9gj: TiDB vulnerable to Use of Externally-Controlled Format String
TiDB is vulnerable to Use of Externally-Controlled Format String. A patch is available on the `master` branch and expected to be part of versions 6.4.0 and 6.1.3.