4856 matches found
AZL-10467 CVE-2022-35737 affecting package sqlite for versions less than 3.39.2-1
SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API...
CVE-2022-35737
SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API...
CVE-2022-35737
SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API...
Design/Logic Flaw
SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API...
CVE-2022-35737
SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API...
UBUNTU-CVE-2022-35737
SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API...
CVE-2022-35737
SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API...
CVE-2022-35737
SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API...
CVE-2022-35737
SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API...
CVE-2022-35737
CVE-2022-35737 affects SQLite, with vulnerable versions 1.0.12–3.39.x, before 3.39.2. The issue is an array-bounds overflow triggered by very large string arguments to a C API, which can cause a crash and, in some advisories, potentially allow arbitrary code execution. The documented fix is to up...
CVE-2022-35737
SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API...
Juniper Junos OS Multiple Vulnerabilities (JSA69705)
The version of Junos OS installed on the remote host is affected by multiple vulnerabilities as referenced in the JSA69705 advisory. - DISPUTED A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo function when there is a crafted SQL...
USN-5403-1: SQLite vulnerability | Cloud Foundry
Severity Negligible Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that SQLite command-line component incorrectly handled certain queries. An attacker could possibly use this issue to cause a crash or possibly execute arbitrary code. Update...
SQLite Input Validation Error Vulnerability (CNVD-2022-62235)
SQLite is a lightweight database, a relational database management system that adheres to ACID. security vulnerabilities exist in versions prior to SQLite 3.39.2, which originate from the auxiliary C API. no details of the vulnerabilities are currently available...
CVE-2022-35737
An array-bounds overflow vulnerability was discovered in SQLite. The vulnerability occurs when handling an overly large input passed as a string argument to some of the C-language APIs provided by SQLite. This flaw allows a remote attacker to pass specially crafted large input to the application...
Moderate Photon OS Security Update - PHSA-2022-0216
Updates of 'sqlite' packages of Photon OS have been released...
Moderate Photon OS Security Update - PHSA-2022-4.0-0216
Updates of 'sqlite' packages of Photon OS have been released...
Denial of Service (DoS)
Overview Affected versions of this package are vulnerable to Denial of Service DoS due to an assertion failure. Exploiting this vulnerability is only possible if the SQLite instance was compiled with -DSQLITEENABLESTAT4. PoC sql CREATE TABLE t0 c0 INT, c1 INT PRIMARY KEY WITHOUT ROWID; INSERT INT...
Vulnerabilities fixed in Juniper products
Juniper has fixed vulnerabilities in several products. The vulnerabilities allow a malicious party to carry out attacks execute attacks that result in the following categories of damage: Denial-of-Service DoS Manipulation of data Circumvention of security measure Remote code execution User rights...
Malicious code in bfx-facs-db-better-sqlite (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d016f9a80da00727a4ac31dcc7daed488a4d52c73c76b444cecdaa5538f0b100 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...