UbuntuUpdates.org

Bugs fixes in "sqlite3"

Origin Bug number Title Date fixed
CVE CVE-2019-8457 SQLite3 from 3.6.0 to and including 3.27.2 is vulnerable to heap out-of-bound read in the rtreenode() function when handling invalid rtree tables. 2019-06-19
CVE CVE-2018-20505 SQLite 3.25.2, when queries are run on a table with a malformed PRIMARY KEY, allows remote attackers to cause a denial of service (application crash) 2019-06-19
CVE CVE-2018-20506 SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow (and resultant buffer overflow) for FTS3 queries in a "merge 2019-06-19
CVE CVE-2018-20346 SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow (and resultant buffer overflow) for FTS3 queries that occur 2019-06-19
CVE CVE-2015-3416 The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions 2015-07-30
CVE CVE-2015-3416 The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions 2015-07-30
CVE CVE-2015-3416 The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions 2015-07-30
CVE CVE-2015-3414 SQLite before 3.8.9 does not properly implement the dequoting of collation-sequence names, which allows context-dependent attackers to cause a denial 2015-07-30
CVE CVE-2013-7443 SQLite array overrun in the skip-scan optimization 2015-07-30
Launchpad 1448758 memory corruption/crash in 64bit version of 3.8.2 2015-07-30
CVE CVE-2015-3416 The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions 2015-07-30
CVE CVE-2015-3414 SQLite before 3.8.9 does not properly implement the dequoting of collation-sequence names, which allows context-dependent attackers to cause a denial 2015-07-30
CVE CVE-2013-7443 SQLite array overrun in the skip-scan optimization 2015-07-30
Launchpad 1448758 memory corruption/crash in 64bit version of 3.8.2 2015-07-30
CVE CVE-2015-3416 The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions 2015-07-30
CVE CVE-2015-3416 The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions 2015-07-30
CVE CVE-2015-3416 The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions 2015-07-30
CVE CVE-2015-3414 SQLite before 3.8.9 does not properly implement the dequoting of collation-sequence names, which allows context-dependent attackers to cause a denial 2015-07-30
CVE CVE-2013-7443 SQLite array overrun in the skip-scan optimization 2015-07-30
Launchpad 1448758 memory corruption/crash in 64bit version of 3.8.2 2015-07-30



About   -   Send Feedback to @ubuntu_updates