Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-3415HistoryApr 24, 2015 - 5:59 p.m.
CVE-2015-3415
2015-04-2417:59:00
Debian Security Bug Tracker
security-tracker.debian.org
10
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.008 Low
EPSS
Percentile
81.7%
The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement comparison operators, which allows context-dependent attackers to cause a denial of service (invalid free operation) or possibly have unspecified other impact via a crafted CHECK clause, as demonstrated by CHECK(0&O>O) in a CREATE TABLE statement.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 10 | all | sqlite | < 2.8.17-15 | sqlite_2.8.17-15_all.deb |
| Debian | 12 | all | sqlite3 | < 3.8.9-1 | sqlite3_3.8.9-1_all.deb |
| Debian | 11 | all | sqlite3 | < 3.8.9-1 | sqlite3_3.8.9-1_all.deb |
| Debian | 10 | all | sqlite3 | < 3.8.9-1 | sqlite3_3.8.9-1_all.deb |
| Debian | 999 | all | sqlite3 | < 3.8.9-1 | sqlite3_3.8.9-1_all.deb |
| Debian | 13 | all | sqlite3 | < 3.8.9-1 | sqlite3_3.8.9-1_all.deb |
Related
cve
cve
CVE-2015-3415
2015-04-24 17:59:00
prion
prion
Code injection
2015-04-24 17:59:00
ubuntucve
ubuntucve
CVE-2015-3415
2015-04-24 00:00:00
CVE-2015-6607
2015-10-06 00:00:00
f5
f5
K37236006 : SQLite vulnerabilities CVE-2015-3414 and CVE-2015-3415
2016-06-07 00:00:00
SOL37236006 - SQLite vulnerabilities CVE-2015-3414 and CVE-2015-3415
2016-06-07 00:00:00
nessus
nessus
Amazon Linux AMI : sqlite (ALAS-2015-591)
2015-09-03 00:00:00
Debian DSA-3252-1 : sqlite3 - security update
2015-05-07 00:00:00
CentOS 7 : sqlite (CESA-2015:1635)
2015-08-18 00:00:00
oraclelinux
oraclelinux
sqlite security update
2015-08-17 00:00:00
kaspersky
kaspersky
KLA10565 Denial of service vulnerabilities in SQLite
2015-04-24 00:00:00
openvas
openvas
Debian Security Advisory DSA 3252-1 (sqlite3 - security update)
2015-05-06 00:00:00
Oracle: Security Advisory (ELSA-2015-1635)
2015-10-06 00:00:00
Gentoo Security Advisory GLSA 201507-05
2015-09-29 00:00:00
debian
debian
[SECURITY] [DSA 3252-1] sqlite3 security update
2015-05-06 20:22:58
osv
osv
sqlite3 - security update
2015-05-06 00:00:00
centos
centos
lemon, sqlite security update
2015-08-17 16:54:44
freebsd
freebsd
sqlite -- multiple vulnerabilities
2015-04-14 00:00:00
securityvulns
securityvulns
[ MDVSA-2015:217 ] sqlite3
2015-05-05 00:00:00
SQLite multiple security vulnerabilities
2015-05-05 00:00:00
APPLE-SA-2015-09-30-3 OS X El Capitan 10.11
2015-10-05 00:00:00
gentoo
gentoo
SQLite: Multiple vulnerabilities
2015-07-07 00:00:00
redhat
redhat
(RHSA-2015:1635) Moderate: sqlite security update
2015-08-17 00:00:00
amazon
amazon
ubuntu
ubuntu
SQLite vulnerabilities
2015-07-30 00:00:00
mageia
mageia
Updated Firefox, Thunderbird & sqlite3 packages fix security vulnerabilities
2015-05-18 22:08:05
openwrt
openwrt
php: Security update (7 CVEs)
2016-01-28 12:23:45
slackware
slackware
[slackware-security] php
2015-07-17 20:25:21
apple
apple
About the security content of iTunes 12.6 - Apple Support
2017-03-22 07:40:40
About the security content of iTunes 12.6
2017-03-21 00:00:00
About the security content of iTunes 12.6 for Windows
2017-03-21 00:00:00
suse
suse
Security update for sqlite3 (important)
2021-07-14 00:00:00
Security update for sqlite3 (important)
2021-07-20 00:00:00
oracle
oracle
CPU July 2018
2018-07-17 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.008 Low
EPSS
Percentile
81.7%
Related for DEBIANCVE:CVE-2015-3415