Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-2519

Опубликовано: 22 мая 2017
Источник: debian

Описание

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted SQL statement.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
sqlite3fixed3.16.0-1package
sqlite3not-affectedwheezypackage
sqlitenot-affectedpackage

Примечания

  • https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=288

  • https://clusterfuzz-external.appspot.com/testcase?key=6739028850245632

  • Fixed by: https://www.sqlite.org/src/info/d08b72c38ff6fae6

Связанные уязвимости

ubuntu логотип

CVE-2017-2519

CVSS3: 9.8
ubuntu
больше 8 лет назад

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted SQL statement.

nvd логотип

CVE-2017-2519

CVSS3: 9.8
nvd
больше 8 лет назад

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted SQL statement.

github логотип

GHSA-q5c7-pq55-4q3p

CVSS3: 9.8
github
больше 3 лет назад

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted SQL statement.

fstec логотип

BDU:2017-01381

fstec
больше 8 лет назад

Уязвимость компонента SQLite операционных систем Mac OS X и iOS, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код