Denial Of Service (DoS)

sqlite is vulnerable to denial of service DoS. The vulnerability exists in SQLite through 3.22.0, databases whose schema is corrupted using a CREATE TABLE AS statement could cause a NULL pointer dereference, related to build.c and prepare.c...

Arbitrary Code Execution

sqlite is vulnerable to arbitrary code execution. The vulnerability exists as the getNodeSize function in ext/rtree/rtree.c in SQLite through 3.19.3, as used in GDAL and other products, mishandles undersized RTree blobs in a crafted database, leading to a heap-based buffer over-read or possibly...

[SECURITY] Fedora 31 Update: roundcubemail-1.4.4-1.fc31

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

[SECURITY] Fedora 30 Update: roundcubemail-1.4.4-1.fc30

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

[SECURITY] Fedora 32 Update: roundcubemail-1.4.4-1.fc32

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

SQLiteODBC Competitive Conditions Issue Vulnerability

SQLite is the United States D. Richard Hipp D. Richard Hipp individual developers of a set of C-based open source embedded relational database management system. The system is characterized by independence, isolation, cross-platform and so on. A security vulnerability exists in SQLiteODBC version...

Debian DLA-2203-1 : sqlite3 security update

It was discovered that there was a denial of service attack in the SQLite database, often embedded into other programs and servers. In the event of a semantic error in an aggregate query, SQLite did not return early from the 'resetAccumulator' function which would lead to a crash via a segmentati...

Arbitary Code Execution

sqlite is vulnerable to arbitrary code execution. An out-of-bounds write allows an attacker to exploit a heap corruption and execute code via a malicious HTML page...

Command Execution Vulnerability in OTCMS

Nettitanium CMS OTCMS PHP version based on PHP + sqlite/mysql technical architecture, UTF-8 coding, not only can be applied to a wide range of news/article publishing type of website, but also applicable to corporate websites. OTCMS has a command execution vulnerability that can be exploited by...

Important: Red Hat Security Advisory: sqlite security update

An update for sqlite is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

sqlite: fts3: improve shadow table corruption detection

Out of bounds write in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

RHEL 7 : sqlite (RHSA-2020:2014)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:2014 advisory. SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk...

sqlite security and bug fix update

3.26.0-6 - Fixed issues found by covscan 3.26.0-5 - Fixed CVE-2019-13752 1786529 - Fixed CVE-2019-13753 1786535 - Fixed CVE-2019-13734 1786509 - Fixed CVE-2019-19924 1789776 - Fixed CVE-2019-19923 1789812 - Fixed CVE-2019-19925 1789808 - Fixed CVE-2019-19959 1789823...

Security update for sqliteodbc (important)

openSUSE Security Update: Security update for sqliteodbc Announcement ID: openSUSE-SU-2020:0612-1 Rating: important References: 1171041 Cross-References: CVE-2020-12050 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This upda...

Fedora: Security Advisory for sqliteodbc (FEDORA-2020-df7c647fa3)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for sqliteodbc (FEDORA-2020-c98c7da2f6)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 32 Update: sqliteodbc-0.9996-6.fc32

ODBC driver for SQLite interfacing SQLite 2.x and/or 3.x using the unixODBC or iODBC driver managers. For more information refer to: - http://www.sqlite.org - SQLite engine - http://www.unixodbc.org - unixODBC Driver Manager - http://www.iodbc.org - iODBC Driver Manager...

EulerOS Virtualization for ARM 64 3.0.2.0 : python-jinja2 (EulerOS-SA-2020-1570)

According to the version of the python-jinja2 package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - flattenSubquery in select.c in SQLite 3.30.1 mishandles certain uses of SELECT DISTINCT involving a LEFT JOIN in...

EulerOS Virtualization for ARM 64 3.0.2.0 : sqlite (EulerOS-SA-2020-1562)

According to the versions of the sqlite package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - multiSelect in select.c in SQLite 3.30.1 mishandles certain errors during parsing, as demonstrated by errors from...

[SECURITY] Fedora 31 Update: sqliteodbc-0.9996-6.fc31

ODBC driver for SQLite interfacing SQLite 2.x and/or 3.x using the unixODBC or iODBC driver managers. For more information refer to: - http://www.sqlite.org - SQLite engine - http://www.unixodbc.org - unixODBC Driver Manager - http://www.iodbc.org - iODBC Driver Manager...