Product Release Advisory - VMware Tanzu Greenplum Backup and Restore 1.31.0

Product/Component

VMware Tanzu Greenplum

0 more products

Notification Id

25580

Last Updated

07 April 2025

Initial Publication Date

07 April 2025

Status

CLOSED

Severity

CRITICAL

CVSS Base Score

9.8

WorkAround

Affected CVE

See list in advisory

Security Advisory

Advisory ID:	TNZ-2025-0020
Severity:	Critical
Issue Date:	2025-04-07
Updated on:	2025-04-07
Synopsis	Updated multiple dependencies updates which resulted in 29 CVEs remediated in this release.

Product Version Release Advisory

VMware Tanzu Greenplum Backup and Restore 1.31.0

Security Fixes

This release has the following security fixes, listed by component and area.

Component

Vulnerabilities Resolved

Greenplum Backup and Restore

CVE-2023-39320 (critical)

CVE-2024-24790 (critical)

GHSA-v778-237x-gjrc (critical)

CVE-2025-22866 (high)

CVE-2023-39323 (high)

CVE-2023-39325 (high)

CVE-2023-45288 (high)

CVE-2023-45285 (high)

CVE-2023-44487 (high)

CVE-2024-24791 (high)

CVE-2024-24784 (high)

CVE-2023-39321 (high)

CVE-2024-34158 (high)

CVE-2023-45283 (high)

CVE-2024-34156 (high)

CVE-2023-39322 (high)

CVE-2023-45290 (medium)

CVE-2024-24787 (medium)

CVE-2023-39319 (medium)

CVE-2024-45341 (medium)

CVE-2023-39318 (medium)

CVE-2024-45336 (medium)

CVE-2024-24783 (medium)

CVE-2024-24789 (medium)

CVE-2024-24785 (medium)

CVE-2023-39326 (medium)

CVE-2023-45284 (medium)

CVE-2024-34155 (medium)

CVE-2023-45289 (medium)

History

2025-04-07: Initial vulnerability report published.

Contact

E-mail: [email protected]

VMware Tanzu Security Advisories
https://tanzu.vmware.com/security