Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-4205-1
HistoryDec 02, 2019 - 12:00 a.m.

SQLite vulnerabilities

2019-12-0200:00:00
ubuntu.com
76

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.8 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.112 Low

EPSS

Percentile

95.1%

JSON

Releases

  • Ubuntu 19.10
  • Ubuntu 19.04
  • Ubuntu 18.04 ESM
  • Ubuntu 16.04 ESM
  • Ubuntu 12.04

Packages

  • sqlite3 - C library that implements an SQL database engine

Details

It was discovered that SQLite incorrectly handled certain schemas.
An attacker could possibly use this issue to cause a denial of service.
This issue only affected Ubuntu 12.04 ESM. (CVE-2018-8740)

It was discovered that SQLite incorrectly handled certain schemas.
An attacker could possibly use this issue to cause a denial of service.
This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and Ubuntu 19.04.
(CVE-2019-16168)

It was discovered that SQLite incorrectly handled certain schemas.
An attacker could possibly use this issue to mishandles some expressions.
This issue only affected Ubuntu 19.04 and Ubuntu 19.10. (CVE-2019-19242)

It was discovered that SQLite incorrectly handled certain queries.
An attacker could possibly use this issue to execute arbitrary code.
This issue only affected Ubuntu 19.04 and Ubuntu 19.10. (CVE-2019-19244)

It was discovered that SQLite incorrectly handled certain SQL commands.
An attacker could possibly use this issue to execute arbitrary code.
This issue only affected Ubuntu 19.04. (CVE-2019-5018)

It was discovered that SQLite incorrectly handled certain commands. An
attacker could possibly use this issue to execute arbitrary code.
(CVE-2019-5827)

OSVersionArchitecturePackageVersionFilename
Ubuntu19.10noarchlibsqlite3-0< 3.29.0-2ubuntu0.1UNKNOWN
Ubuntu19.10noarchlemon< 3.29.0-2ubuntu0.1UNKNOWN
Ubuntu19.10noarchlemon-dbgsym< 3.29.0-2ubuntu0.1UNKNOWN
Ubuntu19.10noarchlibsqlite3-0-dbgsym< 3.29.0-2ubuntu0.1UNKNOWN
Ubuntu19.10noarchlibsqlite3-dev< 3.29.0-2ubuntu0.1UNKNOWN
Ubuntu19.10noarchlibsqlite3-tcl< 3.29.0-2ubuntu0.1UNKNOWN
Ubuntu19.10noarchlibsqlite3-tcl-dbgsym< 3.29.0-2ubuntu0.1UNKNOWN
Ubuntu19.10noarchsqlite3< 3.29.0-2ubuntu0.1UNKNOWN
Ubuntu19.10noarchsqlite3-dbgsym< 3.29.0-2ubuntu0.1UNKNOWN
Ubuntu19.10noarchsqlite3-doc< 3.29.0-2ubuntu0.1UNKNOWN
Rows per page:
1-10 of 521

Related

nessus 56
openvas 42
cloudfoundry 1
ibm 8
gentoo 2
photon 5
prion 6
ubuntucve 6
alpinelinux 5
osv 9
cve 6
mageia 3
debiancve 6
redhatcve 6
veracode 4
suse 5
symantec 1
cbl_mariner 1
fedora 10
freebsd 3
talosblog 1
talos 1
kaspersky 1
redhat 3
debian 2
almalinux 2
f5 1
oraclelinux 1
chrome 1
rocky 1
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS : SQLite vulnerabilities (USN-4205-1)
2019-12-03 00:00:00
GLSA-202003-16 : SQLite: Multiple vulnerabilities
2020-03-16 00:00:00
SUSE SLED15 / SLES15 Security Update : sqlite3 (SUSE-SU-2019:2533-1)
2019-10-04 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4205-1)
2019-12-03 00:00:00
Mageia: Security Advisory (MGASA-2020-0070)
2022-01-28 00:00:00
SQLite 3.8.5 - 3.29.0 DoS Vulnerability
2021-06-17 00:00:00
cloudfoundry
cloudfoundry
USN-4205-1: SQLite vulnerabilities | Cloud Foundry
2019-12-18 00:00:00
ibm
ibm
Security Bulletin: Addressing the Sqlite Vulnerability CVE-2019-16168, CVE-2019-19242 and CVE-2019-19244
2020-03-03 14:28:29
Security Bulletin: A security vulnerability has been identified in SQLite shipped with PowerAI.
2020-03-01 17:02:58
Security Bulletin: IBM Security Guardium is affected by an SQLite vulnerability
2020-10-09 16:57:01
gentoo
gentoo
SQLite: Multiple vulnerabilities
2020-03-15 00:00:00
SQLite: Multiple vulnerabilities
2019-08-15 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2020-0270
2020-01-30 00:00:00
Important Photon OS Security Update - PHSA-2020-0204
2020-01-30 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0270
2020-02-05 00:00:00
prion
prion
Code injection
2019-11-27 17:15:00
Sql injection
2019-11-25 20:15:00
Design/Logic Flaw
2019-09-09 17:15:00
ubuntucve
ubuntucve
CVE-2019-19242
2019-11-26 00:00:00
CVE-2019-19244
2019-11-25 00:00:00
CVE-2019-16168
2019-09-09 00:00:00
alpinelinux
alpinelinux
CVE-2019-19242
2019-11-27 17:15:00
CVE-2019-19244
2019-11-25 20:15:00
CVE-2019-16168
2019-09-09 17:15:00
osv
osv
CVE-2019-19244
2019-11-25 20:15:11
CVE-2019-19242
2019-11-27 17:15:14
CVE-2019-16168
2019-09-09 17:15:13
cve
cve
CVE-2019-19244
2019-11-25 20:15:00
CVE-2019-19242
2019-11-27 17:15:00
CVE-2019-16168
2019-09-09 17:15:00
mageia
mageia
Updated sqlite3 packages fix security vulnerabilities
2020-01-30 21:28:34
Updated sqlite3 packages fix security vulnerability
2018-03-23 01:39:21
Updated sqlite packages fix security vulnerability
2023-06-28 08:21:41
debiancve
debiancve
CVE-2019-19244
2019-11-25 20:15:00
CVE-2019-19242
2019-11-27 17:15:00
CVE-2019-16168
2019-09-09 17:15:00
redhatcve
redhatcve
CVE-2019-19242
2019-12-02 17:18:33
CVE-2019-19244
2019-11-28 18:47:50
CVE-2019-16168
2019-11-05 17:56:14
veracode
veracode
Denial Of Service (DoS)
2019-09-10 03:36:37
Denial Of Service (DoS)
2020-05-10 23:25:15
Integer Overflow
2020-09-21 06:25:03
suse
suse
Security update for sqlite3 (moderate)
2019-10-08 00:00:00
Security update for sqlite3 (moderate)
2019-10-08 00:00:00
Security update for chromium (important)
2019-06-03 00:00:00
symantec
symantec
SQLite CVE-2019-16168 Denial of Service Vulnerability
2019-11-05 00:00:00
cbl_mariner
cbl_mariner
CVE-2019-16168 affecting package ceph 16.2.10-3
2024-04-17 22:02:46
fedora
fedora
[SECURITY] Fedora 30 Update: sqlite-3.26.0-7.fc30
2019-12-05 01:12:09
[SECURITY] Fedora 28 Update: sqlite-3.22.0-4.fc28
2018-04-01 00:46:25
[SECURITY] Fedora 27 Update: sqlite-3.20.1-2.fc27
2018-03-27 20:18:12
freebsd
freebsd
SQLite -- Corrupt DB can cause a NULL pointer dereference
2018-03-16 00:00:00
SQLite -- Corrupt DB can cause a NULL pointer dereference
2018-03-16 00:00:00
sqlite3 -- use after free
2019-05-09 00:00:00
talosblog
talosblog
Vulnerability Spotlight: Remote code execution bug in SQLite
2019-05-09 07:24:55
talos
talos
Sqlite3 Window Function Remote Code Execution Vulnerability
2019-05-09 00:00:00
kaspersky
kaspersky
KLA11475 Multiple vulnerabilities in Google Chrome
2019-04-30 00:00:00
redhat
redhat
(RHSA-2019:1243) Important: chromium-browser security update
2019-05-16 20:01:47
(RHSA-2020:4442) Moderate: sqlite security update
2020-11-03 12:04:56
(RHSA-2021:1968) Moderate: mingw packages security and bug fix update
2021-05-18 06:30:39
debian
debian
[SECURITY] [DLA 3431-1] sqlite security update
2023-05-22 11:12:34
[SECURITY] [DLA 2340-1] sqlite3 security update
2020-08-22 22:34:41
almalinux
almalinux
Moderate: sqlite security update
2020-11-03 12:04:56
Moderate: mingw packages security and bug fix update
2021-05-18 06:30:39
f5
f5
K96300145 : C Library (SQLite & libxslt) vulnerabilities CVE-2019-16168 CVE-2019-13117 CVE-2019-13118
2020-01-31 00:00:00
oraclelinux
oraclelinux
sqlite security update
2020-11-10 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2019-04-30 00:00:00
rocky
rocky
mingw packages security and bug fix update
2021-05-18 00:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.8 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.112 Low

EPSS

Percentile

95.1%

JSON
Related for USN-4205-1
nessus56openvas42cloudfoundry1ibm8gentoo2photon5prion6ubuntucve6alpinelinux5osv9cve6mageia3debiancve6redhatcve6veracode4suse5symantec1cbl_mariner1fedora10freebsd3talosblog1talos1kaspersky1redhat3debian2almalinux2f51oraclelinux1chrome1rocky1