UbuntuUpdates.org

Package "sqlite3"

Name: sqlite3

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • LALR(1) Parser Generator for C or C++
  • SQLite 3 Tcl bindings

Latest version: 3.29.0-2ubuntu0.2
Release: eoan (19.10)
Level: updates
Repository: universe

Links

Save this URL for the latest version of "sqlite3": https://www.ubuntuupdates.org/sqlite3



Other versions of "sqlite3" in Eoan

Repository Area Version
base universe 3.29.0-2
base main 3.29.0-2
security main 3.29.0-2ubuntu0.2
security universe 3.29.0-2ubuntu0.2
updates main 3.29.0-2ubuntu0.2

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 3.29.0-2ubuntu0.2 2020-03-10 15:07:17 UTC

  sqlite3 (3.29.0-2ubuntu0.2) eoan-security; urgency=medium

  * SECURITY UPDATE: more shadow table corruption
    - debian/patches/CVE-2019-13734_50.patch: more improvements to shadow
      table corruption detection in ext/fts3/fts3.c, ext/fts3/fts3Int.h,
      ext/fts3/fts3_write.c.
    - CVE-2019-13734
    - CVE-2019-13750
  * SECURITY UPDATE: corrupt records in fts3
    - debian/patches/CVE-2019-13751-pre1.patch: detect and prevent infinite
      recursion in fts3SelectLeaf() due to a malformed FTS3 btree in
      ext/fts3/fts3.c, test/fts4aa.test.
    - debian/patches/CVE-2019-13751.patch: improve detection of corrupt
      records in ext/fts3/fts3.c, ext/fts3/fts3_write.c.
    - CVE-2019-13751
  * SECURITY UPDATE: shadow table corruption
    - debian/patches/CVE-2019-13752.patch: improved detection of corrupt
      shadow tables in ext/fts3/fts3.c, ext/fts3/fts3Int.h,
      ext/fts3/fts3_write.c.
    - CVE-2019-13752
  * SECURITY UPDATE: out of bounds read
    - debian/patches/CVE-2019-13753.patch: remove a reachable NEVER() in
      ext/fts3/fts3_write.c.
    - CVE-2019-13753
  * SECURITY UPDATE: invalid pointer dereference
    - debian/patches/CVE-2019-19880.patch: fully disable the constant value
      to avoid an invalid pointer dereference in src/window.c.
    - CVE-2019-19880
  * SECURITY UPDATE: SELECT DISTINCT involving a LEFT JOIN issue
    - debian/patches/CVE-2019-19923.patch: continue to back away from the
      LEFT JOIN optimization of check-in by disallowing query flattening if
      the outer query is DISTINCT in src/select.c, test/join.test.
    - CVE-2019-19923
  * SECURITY UPDATE: certain parser-tree rewriting mishandling
    - debian/patches/CVE-2019-19924.patch: properly handle errors in
      src/expr.c, src/vdbeaux.c, src/window.c.
    - CVE-2019-19924
  * SECURITY UPDATE: NULL pathname mishandling in zipfileUpdate
    - debian/patches/CVE-2019-19925.patch: properly handle pathname in
      ext/misc/zipfile.c, test/zipfile.test.
    - CVE-2019-19925
  * SECURITY UPDATE: multiSelect error handling issue
    - debian/patches/CVE-2019-19926.patch: abort early due to prior errors
      in src/select.c.
    - CVE-2019-19926
  * SECURITY UPDATE: embedded NULL filename mishandling
    - debian/patches/CVE-2019-19959-1.patch: add test to test/zipfile.test.
    - debian/patches/CVE-2019-19959-2.patch: handle filenames that contain
      embedded zeros in ext/misc/zipfile.c.
    - CVE-2019-19959
  * SECURITY UPDATE: selectExpander stack unwinding issue
    - debian/patches/CVE-2019-20218-pre1.patch: make sure the WITH stack in
      the Parse object is disabled following an error in src/select.c,
      src/util.c, test/with3.test.
    - debian/patches/CVE-2019-20218.patch: do not attempt to unwind the
      WITH stack in the Parse object following an error in src/select.c,
      test/altertab3.test.
    - CVE-2019-20218
  * SECURITY UPDATE: NULL pointer deref via generated column optimizations
    - debian/patches/CVE-2020-9327-1.patch: take care when checking the
      table of a TK_COLUMN expression node in src/expr.c, src/sqliteInt.h,
      src/whereexpr.c.
    - debian/patches/CVE-2020-9327-2.patch: switch to better and smaller
      solution in src/expr.c, src/sqliteInt.h, src/whereexpr.c.
    - CVE-2020-9327

 -- Marc Deslauriers <email address hidden> Tue, 03 Mar 2020 09:21:25 -0500

Source diff to previous version
CVE-2019-13734 Out of bounds write in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted H
CVE-2019-13750 Insufficient data validation in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to bypass defense-in-depth measures via a cra
CVE-2019-13751 Uninitialized data in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to obtain potentially sensitive information from proces
CVE-2019-13752 Out of bounds read in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to obtain potentially sensitive information from proces
CVE-2019-13753 Out of bounds read in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to obtain potentially sensitive information from proces
CVE-2019-19880 exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER B
CVE-2019-19923 flattenSubquery in select.c in SQLite 3.30.1 mishandles certain uses of SELECT DISTINCT involving a LEFT JOIN in which the right-hand side is a view.
CVE-2019-19924 SQLite 3.30.1 mishandles certain parser-tree rewriting, related to expr.c, vdbeaux.c, and window.c. This is caused by incorrect sqlite3WindowRewrite(
CVE-2019-19925 zipfileUpdate in ext/misc/zipfile.c in SQLite 3.30.1 mishandles a NULL pathname during an update of a ZIP archive.
CVE-2019-19926 multiSelect in select.c in SQLite 3.30.1 mishandles certain errors during parsing, as demonstrated by errors from sqlite3WindowRewrite() calls. NOTE:
CVE-2019-19959 ext/misc/zipfile.c in SQLite 3.30.1 mishandles certain uses of INSERT INTO in situations involving embedded '\0' characters in filenames, leading to
CVE-2019-20218 selectExpander in select.c in SQLite 3.30.1 proceeds with WITH stack unwinding even after a parsing error.
CVE-2020-9327 In SQLite 3.31.1, isAuxiliaryVtabOperator allows attackers to trigger a NULL pointer dereference and segmentation fault because of generated column o

Version: 3.29.0-2ubuntu0.1 2019-12-02 15:07:32 UTC

  sqlite3 (3.29.0-2ubuntu0.1) eoan-security; urgency=medium

  * SECURITY UPDATE: Mishandle pExpr
    - debian/patches/CVE-2019-19242.patch: correctly handled
      pExpr in src/expr.c.
    - CVE-2019-19242
  * SECURITY UPDATE: Denial of service (crash)
    - debian/patches/CVE-2019-19244.patch: fix the crash
      that happens if no check p->Win == 0 in src/select.c,
      test1/window1.test.
    - CVE-2019-19244

 -- <email address hidden> (Leonidas S. Barbosa) Tue, 26 Nov 2019 15:43:50 -0300

CVE-2019-19242 SQLite 3.30.1 mishandles pExpr-&gt;y.pTab, as demonstrated by the TK_C ...
CVE-2019-19244 sqlite3Select in select.c in SQLite 3.30.1 allows a crash if a sub-select uses both DISTINCT and window functions, and also has certain ORDER BY usag



About   -   Send Feedback to @ubuntu_updates