15 matches found
Astra Linux - уязвимость в sqlite3
SQLite version 3.32.0 has an integer overflow issue in the sqlite3strvappendf function within printf.c...
EUVD-2020-5687
Malware in sbrugna...
SQLite through 3.32.0 has an integer overflow in sqlite3_str_vappendf in printf.c.
...
NewStart CGSL MAIN 6.02 : sqlite Multiple Vulnerabilities (NS-SA-2022-0052)
The remote NewStart CGSL host, running version MAIN 6.02, has sqlite packages installed that are affected by multiple vulnerabilities: - SQLite through 3.32.0 has an integer overflow in sqlite3strvappendf in printf.c. CVE-2020-13434 - In SQLite before 3.32.3, select.c mishandles query-flattener...
Integer Overflows
SQLite is vulnerable to an integer overflow in sqlite3strvappendf in printf.c...
CVE-2020-13434
SQLite through 3.32.0 has an integer overflow in sqlite3strvappendf in printf.c...
DEBIAN-CVE-2020-13434
SQLite through 3.32.0 has an integer overflow in sqlite3strvappendf in printf.c...
Integer overflow
SQLite through 3.32.0 has an integer overflow in sqlite3strvappendf in printf.c...
CVE-2020-13434
SQLite through 3.32.0 has an integer overflow in sqlite3_str_vappendf in printf.c (CVE-2020-13434). Affected versions are up to 3.32.0; remediation is to update to SQLite 3.32.3. This fix is reflected in multiple advisories (e.g., Apple iOS/macOS security content HT211850/HT211935 noting SQLite u...
CVE-2020-13434
SQLite through 3.32.0 has an integer overflow in sqlite3strvappendf in printf.c...
CVE-2020-13434
SQLite through 3.32.0 has an integer overflow in sqlite3strvappendf in printf.c...
CVE-2015-3416
The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions, which allows context-dependent attackers to cause a denial of service integer overflow and stack-based buffer overflow or possibly have unspecifie...
Integer overflow
The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions, which allows context-dependent attackers to cause a denial of service integer overflow and stack-based buffer overflow or possibly have unspecifie...
CVE-2015-3416
The CVE affects SQLite’s sqlite3VXPrintf in printf.c, vulnerable before 3.8.9. A crafted SELECT with large integers can trigger DoS via integer overflow or stack overflow. Mitigation: upgrade SQLite to a fixed version (3.8.9+); the vulnerability is confirmed in multiple advisories (e.g., F5/K1695...
MPFR库printf.c多个单字节溢出漏洞
BUGTRAQ ID: 33945 MPFR是一个用于高精度浮点运算的C库。 MPFR库的printf.c文件中没有正确的实现mpfrsnprintf和mpfrvsnprintf函数。如果用户使用链接到该库的应用程序处理了恶意文件的话,就可能向预期的缓冲区末尾写出一个空字节,导致拒绝服务或执行任意代码。 MPFR 2.4 厂商补丁: MPFR ---- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://mpfr.loria.fr/mpfr-2.4.1/index.htmlchanges...