Astra Linux - уязвимость в sqlite3

SQLite 3.30.1 improperly handles certain parser-tree rewrites, related to files expr.c, vdbeaux.c, and window.c. This issue is caused by incorrect error handling in the sqlite3WindowRewrite function...

EUVD-2019-9513

Malware in sbrugna...

SUSE CVE-2019-20079

The autocmd feature in window.c in Vim before 8.1.2136 accesses freed memory...

Updated vim packages fix security vulnerability

It was discovered that the autocmd feature in window.c in Vim before 8.1.2136 accesses freed memory CVE-2019-20079...

CVE-2019-19880

exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled...

Design/Logic Flaw

The autocmd feature in window.c in Vim before 8.1.2136 accesses freed memory...

CVE-2019-20079

The autocmd feature in window.c in Vim before 8.1.2136 accesses freed memory...

Vim Reuse After Release Vulnerability

Vim is a powerful, highly customizable text editor, an improved version of vi, with many improvements and features added to Vi. A post-release reuse vulnerability exists in the autocmd feature in window.c in versions of Vim prior to 8.1.2136. No detailed vulnerability details are provided at this...

CVE-2019-19924

CVE-2019-19924 affects SQLite 3.30.1 with faulty error handling in sqlite3WindowRewrite() during parser-tree rewriting (expr.c, vdbeaux.c, window.c). The connected Astra Linux note reproduces the vulnerability description, and IBM CP4S remediation states CP4S 1.9.0 fixes this by upgrading from CP...

CVE-2019-19924

SQLite 3.30.1 mishandles certain parser-tree rewriting, related to expr.c, vdbeaux.c, and window.c. This is caused by incorrect sqlite3WindowRewrite error handling...

CVE-2019-19880

exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled...

CVE-2019-19880

exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled...

CVE-2019-19880

exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled...

CVE-2019-19880

exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled...

SQLite Invalid Pointer Dereference Vulnerability

SQLite is the United States D. Richard Hipp software developers of a set of C-based open source embedded relational database management system. The system is characterized by independence, isolation, cross-platform and so on. SQLite 3.30.1 version of the window.c file of the exprListAppendList ha...

Updated file-roller package fixes CVE-2013-4668

Updated file-roller package fixes security vulnerability: Directory traversal vulnerability in File Roller 3.6.x before 3.6.4 when libarchive is used, allows remote attackers to create arbitrary files via a crafted archive that is not properly handled in a "Keep directory structure" action, relat...