SQLite report about CVE-2019-20218

Malicious SQL statement causes an uninitialized pointer read and denial-of-service. details...

SQLite report about CVE-2019-19923

Malicious SQL statement causes a NULL pointer dereference and denial-of-service. details...

SQLite report about CVE-2019-19646

The PRAGMA integritycheck command might cause the byte-code for a prepared statement to loop indefinitely. This might enable a denial-of-service, if the application has not taken appropriate and prudent steps to limit the run-time of SQL statements. This is not a vulnerability, as there are...

SQLite report about CVE-2019-19924

Malicious SQL statement causes an uninitialized pointer reference and denial-of-service. details...

SQLite report about CVE-2019-19317

This CVE identifies a bug in a development check-in of SQLite. The bug never appeared in any official SQLite release. details...

[SECURITY] Fedora 28 Update: sqlite-3.22.0-5.fc28

SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL databas...

Fedora Update for sqlite FEDORA-2018-5f91fbf4fd

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Apache Tika < 1.20 DoS Vulnerability

Apache Tika is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:tika"; if...

Debian: Security Advisory (DLA-1613-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Apache Tika Infinite Loop Vulnerability

Apache Tika is the U.S. Apache Apache Software Foundation, an integrated POI using Java programs to provide open source functions for reading and writing documents in Microsoft Office format library, Pdfbox read and create PDF documents pure Java class library and for text extraction work to...

UBUNTU-CVE-2018-17197

A carefully crafted or corrupt sqlite file can cause an infinite loop in Apache Tika's SQLite3Parser in versions 1.8-1.19.1 of Apache Tika...

CVE-2018-17197

A carefully crafted or corrupt sqlite file can cause an infinite loop in Apache Tika's SQLite3Parser in versions 1.8-1.19.1 of Apache Tika...

Code injection

A carefully crafted or corrupt sqlite file can cause an infinite loop in Apache Tika's SQLite3Parser in versions 1.8-1.19.1 of Apache Tika...

CVE-2018-17197

A carefully crafted or corrupt sqlite file can cause an infinite loop in Apache Tika's SQLite3Parser in versions 1.8-1.19.1 of Apache Tika...

CVE-2018-17197

CVE-2018-17197 affects Apache Tika’s SQLite3Parser, where a carefully crafted or corrupt sqlite file can trigger an infinite loop in versions 1.8–1.19.1. The vulnerability is a denial of service in Tika’s parser, with potential impact on availability. The Connected documents confirm the affected ...

Denial Of Service (DoS)

tika-parsers is vulnerable to denial of service DoS attacks. The vulnerability exists as parsing corrupted sqlite files can cause an infinite loop, causing DoS attacks...

Google Chrome 70 - SQLite Magellan Crash Exploit

This proof-of-concept crashes the Chrome renderer process using Tencent Blade Team's Magellan SQLite3 bug. It's based on a SQLite test case from the commit that fixed the bug. If you're using Chrome 70 or below, tap the button below to crash this page: Crash this page Your browser's user agent is...

Integer overflow

SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow and resultant buffer overflow for FTS3 queries that occur after crafted changes to FTS3 shadow tables, allowing remote attackers to execute arbitrary code by leveraging the ability to run arbitrary SQL...

CVE-2018-20346

SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow and resultant buffer overflow for FTS3 queries that occur after crafted changes to FTS3 shadow tables, allowing remote attackers to execute arbitrary code by leveraging the ability to run arbitrary SQL...

ALPINE-CVE-2018-20346

SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow and resultant buffer overflow for FTS3 queries that occur after crafted changes to FTS3 shadow tables, allowing remote attackers to execute arbitrary code by leveraging the ability to run arbitrary SQL...