Уязвимость CVE-2015-3415

Пакет	Статус	Версия исправления	Релиз	Тип
sqlite3	fixed	3.8.9-1		package
sqlite3	not-affected		wheezy	package
sqlite3	not-affected		squeeze	package
sqlite	not-affected			package

CVE-2015-3415

ubuntu

около 10 лет назад

The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement comparison operators, which allows context-dependent attackers to cause a denial of service (invalid free operation) or possibly have unspecified other impact via a crafted CHECK clause, as demonstrated by CHECK(0&O>O) in a CREATE TABLE statement.

CVE-2015-3415

redhat

около 10 лет назад

The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement comparison operators, which allows context-dependent attackers to cause a denial of service (invalid free operation) or possibly have unspecified other impact via a crafted CHECK clause, as demonstrated by CHECK(0&O>O) in a CREATE TABLE statement.

CVE-2015-3415

nvd

около 10 лет назад

The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement comparison operators, which allows context-dependent attackers to cause a denial of service (invalid free operation) or possibly have unspecified other impact via a crafted CHECK clause, as demonstrated by CHECK(0&O>O) in a CREATE TABLE statement.

GHSA-p88q-qx6q-mhv3

github

около 3 лет назад

The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement comparison operators, which allows context-dependent attackers to cause a denial of service (invalid free operation) or possibly have unspecified other impact via a crafted CHECK clause, as demonstrated by CHECK(0&O>O) in a CREATE TABLE statement.

ELSA-2015-1635

oracle-oval

почти 10 лет назад

ELSA-2015-1635: sqlite security update (MODERATE)

exploitDog

CVE-2015-3415

Описание

Пакеты

Примечания

Связанные уязвимости