SUSE SLES15 Security Update : sqlite3 (SUSE-SU-2022:3307-2)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3307-2 advisory. - DISPUTED A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo functi...

SUSE-SU-2022:3307-2 Security update for sqlite3

This update for sqlite3 fixes the following issues: Security issues fixed: - CVE-2022-35737: Fixed an array-bounds overflow if billions of bytes are used in a string argument to a C API bnc1201783. - CVE-2021-36690: Fixed an issue with the SQLite Expert extension when a column has no collating...

SUSE-SU-2022:3307-1 Security update for sqlite3

This update for sqlite3 fixes the following issues: Security issues fixed: - CVE-2022-35737: Fixed an array-bounds overflow if billions of bytes are used in a string argument to a C API bnc1201783. - CVE-2021-36690: Fixed an issue with the SQLite Expert extension when a column has no collating...

PT-2022-37524 · Tcl · Tcl

Name of the Vulnerable Software and Affected Versions: tcl affected versions not specified Description: The issue involves a race condition in test socket-13.1. Additionally, the SQLite extension has been removed and replaced with the packaged sqlite3. Recommendations: At the moment, there is no...

SUSE SLED15 / SLES15 Security Update : colord (SUSE-SU-2022:3496-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3496-1 advisory. - There are two Information Disclosure vulnerabilities in colord, and they lie in colord/src/cd-device-db.c and...

SQLite3 addresses vulnerability in packaged version of libsqlite

Summary The rubygem sqlite3 v1.5.1 upgrades the packaged version of libsqlite from v3.39.3 to v3.39.4. libsqlite v3.39.4 addresses a vulnerability described as follows in the release notification: Version 3.39.4 is a minimal patch against the prior release that addresses issues found since the...

GHSA-MGVV-5MXP-XQ67 SQLite3 addresses vulnerability in packaged version of libsqlite

Summary The rubygem sqlite3 v1.5.1 upgrades the packaged version of libsqlite from v3.39.3 to v3.39.4. libsqlite v3.39.4 addresses a vulnerability described as follows in the release notification: Version 3.39.4 is a minimal patch against the prior release that addresses issues found since the...

PT-2022-28264 · Libsqlite +1 · Libsqlite +1

Name of the Vulnerable Software and Affected Versions: sqlite3 versions 1.5.0 Description: A potential vulnerability in the FTS3 extension of libsqlite has been identified, which can be exploited by an attacker with full SQL access who can construct a corrupt database with over 2GB of FTS3 conten...

Denial of service

An issue was discovered in Samsung TizenRT through 3.0GBM and 3.1PRE. createDB in security/provisioning/src/provisioningdatabasemanager.c has a missing sqlite3free after sqlite3exec, leading to a denial of service...

Ubuntu: Security Advisory (USN-5615-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2022:3401-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : sqlite3 (SUSE-SU-2022:3401-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3401-1 advisory. - DISPUTED A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo functi...

SUSE-SU-2022:3401-1 Security update for sqlite3

This update for sqlite3 fixes the following issues: Security issues fixed: - CVE-2022-35737: Fixed an array-bounds overflow if billions of bytes are used in a string argument to a C API bnc1201783. - CVE-2021-36690: Fixed an issue with the SQLite Expert extension when a column has no collating...

SUSE SLED15 / SLES15 Security Update : sqlite3 (SUSE-SU-2022:3307-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3307-1 advisory. - DISPUTED A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the...

openSUSE: Security Advisory for sqlite3 (SUSE-SU-2022:3307-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE: Security Advisory (SUSE-SU-2022:3307-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Out Of Bound Access

sqlite3 is vulnerable to out-of-bound access. The vulnerability exists through ALTER TABLE for views that have a nested FROM clause which allows an attacker to access information...

NULL Pointer Dereference

sqlite3 is vulnerable to null pointer dereference. The vulnerability exists due to the the INTERSEC query processing which cause a potential null pointer derreference...

OESA-2022-1914 colord security update

colord is a system service that makes it easy to manage, install and generate color profiles to accurately color manage input and output devices. Security Fixes: There are two Information Disclosure vulnerabilities in colord, and they lie in colord/src/cd-device-db.c and colord/src/cd-profile-db....

Ubuntu: Security Advisory (USN-5615-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...