Описание
In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the query planner."
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| sqlite3 | fixed | 3.29.0-2 | package | |
| sqlite3 | fixed | 3.27.2-3+deb10u1 | buster | package |
| sqlite3 | no-dsa | jessie | package | |
| sqlite | not-affected | package |
Примечания
https://www.mail-archive.com/sqlite-users@mailinglists.sqlite.org/msg116312.html
https://www.sqlite.org/src/info/e4598ecbdd18bd82945f6029013296690e719a62
Fixed by: https://www.sqlite.org/src/info/98357d8c1263920b (v3.30.0)
Introduced by: https://www.sqlite.org/src/info/90e36676476e8db0 (v3.8.5)
https://github.com/sqlite/sqlite/commit/725dd72400872da94dcfb6af48128905b93d57fe
EPSS
Связанные уязвимости
In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the query planner."
In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the query planner."
In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the query planner."
EPSS