Product Version Release Advisory VMware Tanzu Greenplum 7.4.0
25466
04 March 2025
04 March 2025
CLOSED
HIGH
8.0
CVE-2024-0985, CVE-2023-7101
Product Release Advisory
|
Advisory ID: |
TNZ-2025-0010 |
|
Severity: |
[High] |
|
Issue Date: |
2025-02-26 |
|
Updated on: |
2025-02-26 |
|
Synopsis |
Resolved issues related to Spreadsheet::ParseExcel Remote Code Execution Vulnerability, and PostgreSQL non-owner REFRESH MATERIALIZED VIEW CONCURRENTLY executes arbitrary SQL. |
Product Version Release Advisory
- Product Release: VMware Tanzu Greenplum 7.4.0
- https://techdocs.broadcom.com/us/en/vmware-tanzu/data-solutions/tanzu-greenplum/7/greenplum-database/relnotes-release-notes.html
Security Fixes
This release has the following security fixes, listed by component and area.
|
Component |
Vulnerabilities Resolved |
|
Greenplum Server |
CVE-2024-0985 (high) |
|
Greenplum Extensions |
CVE-2023-7101 (high) |
History
2025-02-26: Initial vulnerability report published.
Contact
E-mail: [email protected]
VMware Tanzu Security Advisories
https://support.broadcom.com/group/ecx/security-advisory?segment=VT