Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

Wiki recommends vulnerable H2 Database version

See original GitHub issue

This wiki page recommends using com.h2database:h2:1.4.199 despite CVE-2021-42392 (see here).

Side note: Somehow #1395 was closed but it appears to me that H2 2.0 is not really supported yet.

Issue Analytics

State:
Created 2 years ago
Comments:5 (3 by maintainers)

Top GitHub Comments

1reaction

hfhbdcommented, Jan 15, 2022

Sure, including a reproducer, please.

0reactions

Tapaccommented, Aug 14, 2022

Wiki was updated to H2 ‘2.x’ version. If you have issue with this version, please file an issue.

Top Results From Across the Web

JNDI-Related Vulnerability Discovered in H2 Database Console

We recommend all users of the H2 database to upgrade to version 2.0.206, even if you are not directly using the H2 console....

H2 Database | MiniWiki - Minisoft

Go to the following page: https://www.h2database.com/html/download.html. Select Windows Installer (“Last Stable” version). If the install cannot ...

Advanced - H2 Database Engine

Advanced. Result Sets Large Objects Linked Tables Spatial Features Recursive Queries Updatable Views Transaction Isolation Multi-Version Concurrency Control ( ...

DSA-5076-1 h2database - Security Information - Debian

Database developers are advised to use at least version 2.1.210-1, ... We recommend that you upgrade your h2database packages.

H2 (DBMS) - Wikipedia

H2 is a relational database management system written in Java. It can be embedded in Java applications or run in client-server mode.