threat_note - DPS' Lightweight Investigation Notebook

threatnote is a web application built by Defense Point Security to allow security researchers the ability to add and retrieve indicators related to their research. As of right now this includes the ability to add IP Addresses, Domains and Threat Actors, with more types being added in the future...

CVE-2019-16168

In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlitestat1 sz field, aka a "severe division by zero in the query planner." Mitigation An user can mitigate the risk of this vulnerability by: 1 Avoid using...

perl-DBD-SQLite bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

ALBA-2019:3522 perl-DBD-SQLite bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

perl-DBD-SQLite bug fix and enhancement update

An update is available for perl-DBD-SQLite. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...

SQLite CVE-2019-16168 Denial of Service Vulnerability

Description SQLite is prone to a denial of service vulnerability. Attackers can exploit this issue to cause denial-of-service conditions. SQLite 3.29.0 and prior versions are vulnerable. Technologies Affected Oracle Communications Design Studio 7.3.4.3.0 Oracle Communications Design Studio...

PESTO - PE (files) Statistical Tool

PESTO is a Python script that extracts and saves in a database some PE file security characteristics or flags searching for every PE binary in a whole directory, and saving results in a database. It checks for architecture flag in the header, and for the following security flags: ASLR, NOSEH, DEP...

Photon OS 2.0: Sqlite PHSA-2019-2.0-0184

An update of the sqlite package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-2.0-0184. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid13020...

Critical Photon OS Security Update - PHSA-2019-3.0-0036

Updates of 'git', 'linux-aws', 'dbus', 'oniguruma', 'linux-secure', 'polkit', 'linux-esx', 'etcd', 'libgcrypt', 'systemd', 'sqlite', 'python3', 'lua', 'gdb', 'sysstat', 'u-boot', 'linux', 'rsyslog' packages of Photon OS have been released...

Critical Photon OS Security Update - PHSA-2019-0036

Updates of 'sysstat', 'gdb', 'rsyslog', 'polkit', 'sqlite', 'dbus', 'python3', 'etcd', 'lua', 'u-boot', 'libgcrypt', 'git', 'linux-esx', 'systemd', 'linux', 'linux-secure', 'linux-aws', 'oniguruma' packages of Photon OS have been released...

Critical Photon OS Security Update - PHSA-2019-0184

Updates of 'e2fsprogs', 'sysstat', 'rsyslog', 'kubernetes', 'sqlite' packages of Photon OS have been released...

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-2.0-0184

An update of 'sqlite', 'rsyslog', 'sysstat', 'e2fsprogs' packages of Photon OS has been released...

SQL Injection

sequelize is vulnerable to SQL injection. The vulnerability exists due to improper escaping of values in the sequelize.json helper function when formatting sub paths for JSON queries for MySQL, MariaDB and SQLite...

CVE-2019-10752

Sequelize, all versions prior to version 4.44.3 and 5.15.1, is vulnerable to SQL Injection due to sequelize.json helper function not escaping values properly when formatting sub paths for JSON queries for MySQL, MariaDB and SQLite...

CVE-2019-10752

Sequelize, all versions prior to version 4.44.3 and 5.15.1, is vulnerable to SQL Injection due to sequelize.json helper function not escaping values properly when formatting sub paths for JSON queries for MySQL, MariaDB and SQLite...

Sql injection

Sequelize, all versions prior to version 4.44.3 and 5.15.1, is vulnerable to SQL Injection due to sequelize.json helper function not escaping values properly when formatting sub paths for JSON queries for MySQL, MariaDB and SQLite...

CVE-2019-10752

Sequelize, all versions prior to version 4.44.3 and 5.15.1, is vulnerable to SQL Injection due to sequelize.json helper function not escaping values properly when formatting sub paths for JSON queries for MySQL, MariaDB and SQLite...

CVE-2019-10752

CVE-2019-10752 affects the Sequelize ORM. All versions prior to 4.44.3 and 5.15.1 are vulnerable to SQL Injection because the helper function sequelize.json() does not escape values properly when formatting sub paths for JSON queries in MySQL, MariaDB and SQLite. The vulnerability is documented a...

SQLite CVE-2019-8457 Out of Bounds Read Heap Buffer Overflow Vulnerability

Description SQLite is prone to a remote heap-based buffer-overflow vulnerability. Attackers can exploit this issue to crash the application, resulting in a denial-of-service condition. Due to the nature of this issue, arbitrary code execution may be possible but this has not been confirmed...

Security Bulletin: A vulneraqbility in SQLite affects IBM Cloud Application Performance Managment R esponse Time Monitoring Agent (CVE-2019-8457)

Summary SQLite is vulnerable to a denial of service, caused by a heap out-of-bound read in the rtreenode function when handling invalid rtree tables. A remote attacker could exploit this vulnerability to cause the application to crash. Vulnerability Details CVEID: CVE-2019-8457 DESCRIPTION: SQLit...