Lucene search

K
cvelistMitreCVELIST:CVE-2019-19959
HistoryJan 03, 2020 - 9:37 p.m.

CVE-2019-19959

2020-01-0321:37:42
mitre
www.cve.org
10
sqlite
3.30.1
zipfile.c
insert into
'\0' characters
filenames
memory-management
valgrind
cve-2019-19959

AI Score

8.4

Confidence

High

EPSS

0.002

Percentile

55.6%

ext/misc/zipfile.c in SQLite 3.30.1 mishandles certain uses of INSERT INTO in situations involving embedded ‘\0’ characters in filenames, leading to a memory-management error that can be detected by (for example) valgrind.