We’ve released hotfix packages for the following drivers to address important security issues:
Microsoft ODBC Driver 17.10.6 for SQL Server (release notes / download) Microsoft ODBC Driver 18.3.3 for SQL Server (release notes / download) Microsoft OLE DB Driver 18.7.2 for SQL Server (release notes / download) Microsoft OLE DB Driver 19.3.3 for SQL Server (release notes / download)
Related CVEs for these updates are the following:
For ODBC:
CVE-2024-28929 – Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
CVE-2024-28930 – Microsoft ODBC Driver for SQL Server Remote Code