CVE-2019-16168

2019-09-09T17:15:00
ID CVE-2019-16168
Type cve
Reporter cve@mitre.org
Modified 2021-07-22T18:15:00

Description

In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the query planner."