• You are here:  
  • Home
  • Q&A
  • Q&A
  • PowerBuilder
  • Regarding - "Security Bulletin: Microsoft.Data.SqlClient Vulnerability CVE-2024-0056"

Subscribe via RSS
Toggle Submenu
  1. Categories
  2. Recent
  3. Tags
View Replies (1)

Resolved Regarding - "Security Bulletin: Microsoft.Data.SqlClient Vulnerability CVE-2024-0056"

  1. Advice
0
Votes
Undo
  1. sachidhanantham ramalingam
    sachidhanantham ramalingam
  2. PowerBuilder
  3. Friday, 23 February 2024 06:48 AM UTC

Hi,

We are using PB 2019 R3 and SQLCA.DBMS = "MSOLEDBSQL SQL Server" (i.e. Microsoft OLEDB Driver for SQL Server, Version: 18.6.0007.0) to connect the SQL Server.
Recently we have received an email related to "Security Bulletin: Microsoft.Data.SqlClient Vulnerability CVE-2024-0056".
So we would like to know anything need to be done in our side?

Thanks,
--Sachi...

Anyone get WinSCP Working using COM or .Net DLL Im...
How to release excessive memory
Responses (1)
Julie Jiang @Appeon
Julie Jiang @Appeon Accepted Answer Pending Moderation
  1. Friday, 23 February 2024 08:28 AM UTC
  2. PowerBuilder
  3. # 1

Hi Sachi, 

As listed in the security bulletin, the affected product versions are:

  • PowerBuilder 2022 R2/R3 are affected, regardless of product edition.
  • InfoMaker 2022 R2/R3 are affected, regardless of product edition.
  • PowerServer 2021 – 2022 R3 are affected, regardless of product edition.
  • SnapDevelop 2019 R3 – 2022 R3 are affected.
  • SnapObjects 3.0.x/4.x.x are affected.

PowerBuilder 2019 R3 is not affected. So there is nothing you need to do about it.

Best regards, Julie

Comment
Load more comments
sachidhanantham ramalingam
  1. sachidhanantham ramalingam
  2. Tuesday, 27 February 2024 06:46 AM UTC
Hi Armeen,



Thanks for your response.

With respect "Security Bulletin: Microsoft.Data.SqlClient Vulnerability CVE-2024-0056" , if we migrate PB2019R3 to PB2022R3 then any security issue will come or not.



Thanks,

--Sachi...
  1. Helpful
Julie Jiang @Appeon
  1. Julie Jiang @Appeon
  2. Wednesday, 28 February 2024 01:11 AM UTC
Hi Sachi,

If you use Microsoft OLEDB Driver for SQL Server connection, you need not worry about CVE-2024-0056.



Best regards, Julie
  1. Helpful
sachidhanantham ramalingam
  1. sachidhanantham ramalingam
  2. Wednesday, 28 February 2024 03:29 AM UTC
Thanks a lot Julie.
  1. Helpful
There are no comments made yet.
  • Page :
  • 1


There are no replies made for this question yet.
However, you are not allowed to reply to this question.