CVE-2017-13685

Опубликовано: 29 авг. 2017

Источник: debian

Описание

The dump_callback function in SQLite 3.20.0 allows remote attackers to cause a denial of service (EXC_BAD_ACCESS and application crash) via a crafted file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
sqlite3	fixed	3.20.1-1		package
sqlite	removed			package

Примечания

https://sqlite.org/src/info/02f0f4c54f2819b3
http://www.mail-archive.com/sqlite-users%40mailinglists.sqlite.org/msg105314.html
Crash in the command-line shell program, not the the core SQLite library.

Связанные уязвимости

CVE-2017-13685

CVSS3: 5.5

ubuntu

больше 8 лет назад

The dump_callback function in SQLite 3.20.0 allows remote attackers to cause a denial of service (EXC_BAD_ACCESS and application crash) via a crafted file.

CVE-2017-13685

CVSS3: 3.3

redhat

больше 8 лет назад

The dump_callback function in SQLite 3.20.0 allows remote attackers to cause a denial of service (EXC_BAD_ACCESS and application crash) via a crafted file.

CVE-2017-13685

CVSS3: 5.5

nvd

больше 8 лет назад

The dump_callback function in SQLite 3.20.0 allows remote attackers to cause a denial of service (EXC_BAD_ACCESS and application crash) via a crafted file.

GHSA-69wm-j7rv-57pp

CVSS3: 5.5

github

больше 3 лет назад

The dump_callback function in SQLite 3.20.0 allows remote attackers to cause a denial of service (EXC_BAD_ACCESS and application crash) via a crafted file.