CVE-2020-15358

CWE-787Out-of-bounds WriteCWE-122Heap-based Buffer Overflow18 documents12 sources
Severity
5.5MEDIUM
EPSS
0.0%
top 88.82%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
17
Platform External/sqliteApple IcloudApple Ipados+14 more
Timeline
PublishedJun 27
Latest updateMay 24

Description

In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages17 packages

NVDsqlite/sqlite< 3.32.3
Androidplatform/external/sqlite12-next:012-next:2021-10-01+2
Debiansqlite3< 3.32.3-1+3
NVDapple/tvos< 14.0
NVDapple/macos< 11.0.1

Also affects: Ubuntu Linux 20.04

Patches

Patch: www.oracle.comPatch: www.oracle.comPatch: www.sqlite.org

🔴Vulnerability Details

4
GHSA
GHSA-rq2p-jfw7-2cj3: In SQLite before 32022-05-24
OSV
CVE-2020-15358: In sqlite3Select of select2021-10-01
CVEList
CVE-2020-15358: In SQLite before 32020-06-27
OSV
CVE-2020-15358: In SQLite before 32020-06-27

📋Vendor Advisories

10
Android
CVE-2020-15358: Android Security Bulletin 2021-10-01 CVE: CVE-2020-15358 Severity: HIGH Type: ID Affected AOSP versions: 11 References: A-1926053642021-10-01
Apple
CVE-2020-15358: macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave2021-02-01
Chrome
Chrome for Android Update: CVE-2020-159932020-10-13
Apple
CVE-2020-15358: iCloud for Windows 7.212020-09-24
Apple
CVE-2020-15358: watchOS 7.02020-09-16

💬Community

3
Bugzilla
CVE-2020-15358 sqlite: heap-based buffer overflow in multiSelectOrderBy due to mishandling of query-flattener optimization in select.c [fedora-all]2020-06-29
Bugzilla
CVE-2020-15358 sqlite: heap-based buffer overflow in multiSelectOrderBy due to mishandling of query-flattener optimization in select.c2020-06-29
Bugzilla
CVE-2020-15358 mingw-sqlite: sqlite: heap-based buffer overflow in multiSelectOrderBy due to mishandling of query-flattener optimization in select.c [fedora-all]2020-06-29