In My project , By downloading and installing the recent cumulative update for SQL 2019 - KB5007182 (https://www.microsoft.com/en-us/download/details.aspx?id=100809) , vulnerability CVE-2021-1636 got fixed . But this patch is causing following vulnerabilities with respect to libraries like
json-smart : CVE-2021-27568 , CVE-2021-31684
library kryo version : BDSA-2016-1151
library Apache Thrift version : BDSA-2021-0373 , CVE-2015-3254 , CVE-2016-5397 , CVE-2018-1320 , CVE-2019-0205
library Apache Hadoop version : CVE-2020-9492
library zlib version : BDSA-2016-1107,BDSA-2016-1108,BDSA-2016-1109,BDSA-2016-1110
library Cyrus SASL version : BDSA-2022-0532 , CVE-2013-4122 , CVE-2019-19906
library curl version : BDSA-2020-1933,BDSA-2020-3058,BDSA-2021-0018,BDSA-2021-0021,BDSA-2021-0022,BDSA-2022-0504,CVE-2020-8169,CVE-2020-8177,CVE-2020-8231,CVE-2020-8284,CVE-2020-8285,CVE-2020-8286,CVE-2021-22876,CVE-2021-22890,CVE-2021-22897,CVE-2021-22898,CVE-2021-22922,CVE-2021-22923,CVE-2021-22924,CVE-2021-22925,CVE-2021-22926,CVE-2021-22946,CVE-2021-22947
library ODataLib for OData version : CVE-2018-8269
library Data Mapper for Jackson version : CVE-2019-10172
library JamesNK/Newtonsoft.Json version : BDSA-2018-5195
library System.Net.Security version : CVE-2017-0247,CVE-2017-0248,CVE-2017-0249,CVE-2017-0256.
ICU for C/C++ (ICU4C) version: CVE-2020-21913
Can you please provide any information on this..........?