NewStart CGSL CORE 5.05 / MAIN 5.05 : sqlite Vulnerability (NS-SA-2020-0096)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has sqlite packages installed that are affected by a vulnerability: - Out of bounds write in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

Integer Overflow

SQLite is vulnerable to integer overflow. An attacker may supply a crafted changes to FTS3 shadow tables, allowing execution arbitrary code by leveraging the ability to run arbitrary SQL statements...

Information Disclosure

SQLite is vulnerable to information disclosure. An attacker could trigger a heap-based buffer over-read in fts5HashEntrySort in sqlite3.c leading to a disclosure of sensitive information...

Security Bulletin: IBM Security Guardium is affected by an SQLite vulnerability

Summary IBM Security Guardium has fixed this vulnerability Vulnerability Details CVEID: CVE-2019-19959 DESCRIPTION: SQLite is vulnerable to a denial of service, caused by the mishandling of certain uses of INSERT INTO in situations involving embedded '\0' characters in filenames. By using a...

Security Bulletin: IBM Security Guardium is affected by an SQLite vulnerability

Summary IBM Security Guardium has fixed this vulnerability Vulnerability Details CVEID: CVE-2019-19242 DESCRIPTION: An unspecified error with the mishandling of pExpr-y.pTab in the sqlite3ExprCodeTarget function in expr.c in SQLite has an unknown impact and attack vector. CVSS Base score: 7.3 CVS...

USN-4438-1 sqlite3 vulnerability

It was discovered that SQLite incorrectly handled query-flattener optimization. An attacker could use this issue to cause SQLite to crash, resulting in a denial of service, or possibly execute arbitrary code...

The vulnerability of the SQLite database management system lies in the lack of protection for SQL query structures, which allows attackers to trigger a service failure.

The vulnerability of the SQLite database management system is related to the lack of protection for SQL query structures. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause a service failure application termination by executing arbitrary SQL commands...

CVE-2020-13871

SQLite 3.32.2 has a use-after-free in resetAccumulator in select.c because the parse tree rewrite for window functions is too late...

CVE-2020-13871

SQLite 3.32.2 has a use-after-free in resetAccumulator in select.c because the parse tree rewrite for window functions is too late...

Multiple Apple Products SQLite Component Out-of-Bounds Read Vulnerability

Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for iPad tablet computers.Apple macOS Catalina is a specialized operating system developed for Mac computers.SQLite is one of the most popular operating systems developed by American software develop...

CVE-2020-13632

ext/fts3/fts3snippet.c in SQLite before 3.32.0 has a NULL pointer dereference via a crafted matchinfo query...

CVE-2020-13631

SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c...

DEBIAN-CVE-2020-13631

SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c...

CVE-2020-13630

ext/fts3/fts3.c in SQLite before 3.32.0 has a use-after-free in fts3EvalNextRow, related to the snippet feature...

UBUNTU-CVE-2020-13630

ext/fts3/fts3.c in SQLite before 3.32.0 has a use-after-free in fts3EvalNextRow, related to the snippet feature...

UBUNTU-CVE-2020-13631

SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c...

Unspecified Vulnerability in SQLite (CNVD-2020-31672)

SQLite is the United States D. Richard Hipp software developers of a set of C-based open source embedded relational database management system. The system is characterized by independence, isolation, cross-platform and so on. SQLite has an unspecified vulnerability. An attacker can exploit this...

The vulnerability of the zipfileUpdate() function in the SQLite database management system allows a hacker to cause a service failure.

The vulnerability of the zipfileUpdate function in the SQLite database management system is related to the improper handling of NULL paths during the update of zip archives. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

EulerOS 2.0 SP8 : sqlite (EulerOS-SA-2020-1512)

According to the version of the sqlite packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - SQLite through 3.31.1 allows attackers to cause a denial of service segmentation fault via a malformed window-function query because the AggInfo...

The vulnerability of the SQLite database management system, related to uncontrolled recursion, allows attackers to trigger a service failure.

The vulnerability of the SQLite database management system is related to a type determination error. Exploiting this vulnerability can allow an attacker to cause a service failure...