4912 matches found
sqlite: integer overflow in sqlite3_str_vappendf function in printf.c
An integer overflow flaw was found in the SQLite implementation of the printf function. This flaw allows an attacker who can control the precision of floating-point conversions, to crash the application, resulting in a denial of service...
Moderate: Red Hat Security Advisory: sqlite security update
An update for sqlite is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...
ALSA-2021:1968 Moderate: mingw packages security and bug fix update
MinGW is a free and open source software development environment to create Microsoft Windows applications. The following packages have been upgraded to a later upstream version: mingw-sqlite 3.26.0.0. BZ1845475 Security Fixes: sqlite: Division by zero in whereLoopAddBtreeIndex in sqlite3.c...
Moderate: mingw packages security and bug fix update
MinGW is a free and open source software development environment to create Microsoft Windows applications. The following packages have been upgraded to a later upstream version: mingw-sqlite 3.26.0.0. BZ1845475 Security Fixes: sqlite: Division by zero in whereLoopAddBtreeIndex in sqlite3.c...
Moderate: sqlite security update
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL databas...
sqlite security update
An update is available for sqlite. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list SQLite is a C library that implements an SQL database engine. A large subset o...
RLSA-2021:1581 Moderate: sqlite security update
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL databas...
BSA-2020-945
Security Advisory ID : BSA-2020-945 Component : SQLite Revision : 1.0 Various SQLite issues seen in SQLite versions through 3.31.1. CVE-2020-11656 - CVSS3.1 - 9.8 In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a...
CVE-2021-20227 affecting package sqlite 3.32.3-2
CVE-2021-20227 affecting package sqlite 3.32.3-2. An upgraded version of the package is available that resolves this issue...
Photon OS 3.0: Sqlite PHSA-2021-3.0-0227
An update of the sqlite package has been released. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-3.0-0227. The text itself is copyright C VMware, Inc...
Google Android 输入验证错误漏洞
Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Alliance OHA. an elevation of privilege vulnerability exists in Google Android sqlite3.c. An attacker could exploit this vulnerability to escalate privileges...
Moderate Photon OS Security Update - PHSA-2021-0227
Updates of 'sqlite' packages of Photon OS have been released...
Moderate Photon OS Security Update - PHSA-2021-3.0-0227
Updates of 'sqlite' packages of Photon OS have been released...
Tenable Nessus Agent <= 8.2.3 Third-Party Vulnerability (TNS-2021-08)
Tenable Nessus Agent is prone to a vulnerability in a third-party component sqlite. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Tenable Nessus Agent < 8.2.4 Multiple Vulnerabilities (TNS-2021-08)
According to its self-reported version, the Tenable Nessus agent running on the remote host is prior to 8.2.4. It is, therefore, affected by multiple vulnerabilities. Nessus Agent leverages third-party software to help provide underlying functionality. Two separate third-party components OpenSSL...
[R1] Nessus Agent 8.2.4 Fixes Multiple Vulnerabilities
Nessus Agent leverages third-party software to help provide underlying functionality. Two separate third-party components OpenSSL and sqlite were found to contain vulnerabilities, and updated versions have been made available by the providers. Out of caution and in line with good practice, Tenabl...
SharpDPAPI - A C# Port Of Some Mimikatz DPAPI Functionality
SharpDPAPI is a C port of some DPAPI functionality from @gentilkiwi's Mimikatz project. I did not come up with this logic, it is simply a port from Mimikatz in order to better understand the process and operationalize it to fit our workflow. The SharpChrome subproject is an adaptation of work fro...
GLSA-202103-04 : SQLite: Remote code execution
The remote host is affected by the vulnerability described in GLSA-202103-04 SQLite: Remote code execution It was discovered that SQLite incorrectly handled certain sub-queries. Impact : A remote attacker could possibly execute arbitrary code with the privileges of the process, or cause a Denial ...
SQLite: Remote code execution
Background SQLite is a C library that implements an SQL database engine. Description It was discovered that SQLite incorrectly handled certain sub-queries. Impact A remote attacker could possibly execute arbitrary code with the privileges of the process, or cause a Denial of Service condition...
A flaw was found in SQLite's SELECT query functionality (src/select.c). This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerability is to system availability.
...