Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2020-11656

Опубликовано: 09 апр. 2020
Источник: debian

Описание

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
sqlite3fixed3.32.0-1package
sqlitenot-affectedpackage

Примечания

  • https://www.sqlite.org/cgi/src/tktview?name=4722bdab08cb14

  • https://www.sqlite.org/src/info/d09f8c3621d5f7f8

  • https://www.sqlite.org/src/info/b64674919f673602

  • Negliglible security impact (and uncovered in DEBUG build)

Связанные уязвимости

ubuntu логотип

CVE-2020-11656

CVSS3: 9.8
ubuntu
почти 6 лет назад

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement.

redhat логотип

CVE-2020-11656

CVSS3: 8.8
redhat
почти 6 лет назад

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement.

nvd логотип

CVE-2020-11656

CVSS3: 9.8
nvd
почти 6 лет назад

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement.

msrc логотип

CVE-2020-11656

CVSS3: 9.8
msrc
больше 1 года назад

Описание отсутствует

github логотип

GHSA-x2v5-p27f-53wp

CVSS3: 9.8
github
больше 3 лет назад

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement.