Debian Sqlite3 vulnerabilities

CVE-2019-16168 [MEDIUM] CVE-2019-16168: sqlite3 - In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browse... In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the query planner." Scope: local bookworm: resolved (fixed in 3.29.0-2) bullseye: resolved (fixed in 3.29.0-2) forky: resolved (fixed in 3.29.0-2) sid: resolved (fixed in

CVE-2019-19242 [MEDIUM] CVE-2019-19242: sqlite3 - SQLite 3.30.1 mishandles pExpr->y.pTab, as demonstrated by the TK_COLUMN case in... SQLite 3.30.1 mishandles pExpr->y.pTab, as demonstrated by the TK_COLUMN case in sqlite3ExprCodeTarget in expr.c. Scope: local bookworm: resolved (fixed in 3.30.1+fossil191229-1) bullseye: resolved (fixed in 3.30.1+fossil191229-1) forky: resolved (fixed in 3.30.1+fossil191229-1) sid: resolved (fixed in 3.30.1+fossil191229-1) trixie: resolved (fixed in 3.30.1+fossi

CVE-2019-9936 [HIGH] CVE-2019-9936: sqlite3 - In SQLite 3.27.2, running fts5 prefix queries inside a transaction could trigger... In SQLite 3.27.2, running fts5 prefix queries inside a transaction could trigger a heap-based buffer over-read in fts5HashEntrySort in sqlite3.c, which may lead to an information leak. This is related to ext/fts5/fts5_hash.c. Scope: local bookworm: resolved (fixed in 3.27.2-2) bullseye: resolved (fixed in 3.27.2-2) forky: resolved (fixed in 3.27.2-2) sid: resolved (fi

CVE-2019-19317 [CRITICAL] CVE-2019-19317: sqlite3 - lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed bitmask in ... lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service or possibly have unspecified other impact. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2019-9937 [HIGH] CVE-2019-9937: sqlite3 - In SQLite 3.27.2, interleaving reads and writes in a single transaction with an ... In SQLite 3.27.2, interleaving reads and writes in a single transaction with an fts5 virtual table will lead to a NULL Pointer Dereference in fts5ChunkIterate in sqlite3.c. This is related to ext/fts5/fts5_hash.c and ext/fts5/fts5_index.c. Scope: local bookworm: resolved (fixed in 3.27.2-2) bullseye: resolved (fixed in 3.27.2-2) forky: resolved (fixed in 3.27.2-2) sid

CVE-2019-19646 [CRITICAL] CVE-2019-19646: sqlite3 - pragma.c in SQLite through 3.30.1 mishandles NOT NULL in an integrity_check PRAG... pragma.c in SQLite through 3.30.1 mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2019-19244 [HIGH] CVE-2019-19244: sqlite3 - sqlite3Select in select.c in SQLite 3.30.1 allows a crash if a sub-select uses b... sqlite3Select in select.c in SQLite 3.30.1 allows a crash if a sub-select uses both DISTINCT and window functions, and also has certain ORDER BY usage. Scope: local bookworm: resolved (fixed in 3.30.1+fossil191229-1) bullseye: resolved (fixed in 3.30.1+fossil191229-1) forky: resolved (fixed in 3.30.1+fossil191229-1) sid: resolved (fixed in 3.30.1+fossil191229-1) tri

CVE-2018-20505 [HIGH] CVE-2018-20505: sqlite3 - SQLite 3.25.2, when queries are run on a table with a malformed PRIMARY KEY, all... SQLite 3.25.2, when queries are run on a table with a malformed PRIMARY KEY, allows remote attackers to cause a denial of service (application crash) by leveraging the ability to run arbitrary SQL statements (such as in certain WebSQL use cases). Scope: local bookworm: resolved (fixed in 3.25.3-1) bullseye: resolved (fixed in 3.25.3-1) forky: resolved (fixed in 3.25

CVE-2018-20506 [HIGH] CVE-2018-20506: sqlite3 - SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer ... SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow (and resultant buffer overflow) for FTS3 queries in a "merge" operation that occurs after crafted changes to FTS3 shadow tables, allowing remote attackers to execute arbitrary code by leveraging the ability to run arbitrary SQL statements (such as in certain WebSQL use cases). T

CVE-2018-8740 [HIGH] CVE-2018-8740: sqlite3 - In SQLite through 3.22.0, databases whose schema is corrupted using a CREATE TAB... In SQLite through 3.22.0, databases whose schema is corrupted using a CREATE TABLE AS statement could cause a NULL pointer dereference, related to build.c and prepare.c. Scope: local bookworm: resolved (fixed in 3.22.0-2) bullseye: resolved (fixed in 3.22.0-2) forky: resolved (fixed in 3.22.0-2) sid: resolved (fixed in 3.22.0-2) trixie: resolved (fixed in 3.22.0-2)

CVE-2018-20346 [HIGH] CVE-2018-20346: chromium - SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer ... SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow (and resultant buffer overflow) for FTS3 queries that occur after crafted changes to FTS3 shadow tables, allowing remote attackers to execute arbitrary code by leveraging the ability to run arbitrary SQL statements (such as in certain WebSQL use cases), aka Magellan. Scope: loc

CVE-2017-2520 [CRITICAL] CVE-2017-2520: sqlite3 - An issue was discovered in certain Apple products. iOS before 10.3.2 is affected... An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a crafted SQL s

CVE-2017-10989 [CRITICAL] CVE-2017-10989: sqlite3 - The getNodeSize function in ext/rtree/rtree.c in SQLite through 3.19.3, as used ... The getNodeSize function in ext/rtree/rtree.c in SQLite through 3.19.3, as used in GDAL and other products, mishandles undersized RTree blobs in a crafted database, leading to a heap-based buffer over-read or possibly unspecified other impact. Scope: local bookworm: resolved (fixed in 3.19.3-3) bullseye: resolved (fixed in 3.19.3-3) forky: resolved (fixed in 3.1

CVE-2017-2519 [CRITICAL] CVE-2017-2519: sqlite3 - An issue was discovered in certain Apple products. iOS before 10.3.2 is affected... An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted SQL

CVE-2017-2513 [CRITICAL] CVE-2017-2513: sqlite3 - An issue was discovered in certain Apple products. iOS before 10.3.2 is affected... An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "SQLite" component. A use-after-free vulnerability allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a craft

CVE-2017-2518 [CRITICAL] CVE-2017-2518: sqlite3 - An issue was discovered in certain Apple products. iOS before 10.3.2 is affected... An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a crafted SQL s

CVE-2017-15286 [HIGH] CVE-2017-15286: sqlite3 - SQLite 3.20.1 has a NULL pointer dereference in tableColumnList in shell.c becau... SQLite 3.20.1 has a NULL pointer dereference in tableColumnList in shell.c because it fails to consider certain cases where `sqlite3_step(pStmt)==SQLITE_ROW` is false and a data structure is never initialized. Scope: local bookworm: resolved (fixed in 3.20.1-2) bullseye: resolved (fixed in 3.20.1-2) forky: resolved (fixed in 3.20.1-2) sid: resolved (fixed in 3.20.1-

CVE-2017-13685 [MEDIUM] CVE-2017-13685: sqlite3 - The dump_callback function in SQLite 3.20.0 allows remote attackers to cause a d... The dump_callback function in SQLite 3.20.0 allows remote attackers to cause a denial of service (EXC_BAD_ACCESS and application crash) via a crafted file. Scope: local bookworm: resolved (fixed in 3.20.1-1) bullseye: resolved (fixed in 3.20.1-1) forky: resolved (fixed in 3.20.1-1) sid: resolved (fixed in 3.20.1-1) trixie: resolved (fixed in 3.20.1-1)

CVE-2016-6153 [MEDIUM] CVE-2016-6153: sqlite3 - os_unix.c in SQLite before 3.13.0 improperly implements the temporary directory ... os_unix.c in SQLite before 3.13.0 improperly implements the temporary directory search algorithm, which might allow local users to obtain sensitive information, cause a denial of service (application crash), or have unspecified other impact by leveraging use of the current working directory for temporary files. Scope: local bookworm: resolved (fixed in 3.13.0-1) bul

CVE-2015-3416 [HIGH] CVE-2015-3416: sqlite3 - The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properl... The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions, which allows context-dependent attackers to cause a denial of service (integer overflow and stack-based buffer overflow) or possibly have unspecified other impact via large integers in a crafted printf function call in