Debian Sqlite3 vulnerabilities

CVE-2015-3415 [HIGH] CVE-2015-3415: sqlite3 - The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly ... The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement comparison operators, which allows context-dependent attackers to cause a denial of service (invalid free operation) or possibly have unspecified other impact via a crafted CHECK clause, as demonstrated by CHECK(0&O>O) in a CREATE TABLE statement. Scope: local bookworm: resolved

CVE-2015-3414 [HIGH] CVE-2015-3414: sqlite3 - SQLite before 3.8.9 does not properly implement the dequoting of collation-seque... SQLite before 3.8.9 does not properly implement the dequoting of collation-sequence names, which allows context-dependent attackers to cause a denial of service (uninitialized memory access and application crash) or possibly have unspecified other impact via a crafted COLLATE clause, as demonstrated by COLLATE"""""""" at the end of a SELECT statement. Scope: local boo

CVE-2013-7443 [MEDIUM] CVE-2013-7443: sqlite3 - Buffer overflow in the skip-scan optimization in SQLite 3.8.2 allows remote atta... Buffer overflow in the skip-scan optimization in SQLite 3.8.2 allows remote attackers to cause a denial of service (crash) via crafted SQL statements. Scope: local bookworm: resolved (fixed in 3.8.3-1) bullseye: resolved (fixed in 3.8.3-1) forky: resolved (fixed in 3.8.3-1) sid: resolved (fixed in 3.8.3-1) trixie: resolved (fixed in 3.8.3-1)