CVE-2020-13630

Опубликовано: 27 мая 2020

Источник: debian

EPSS Низкий

Описание

ext/fts3/fts3.c in SQLite before 3.32.0 has a use-after-free in fts3EvalNextRow, related to the snippet feature.

Пакет	Статус	Версия исправления	Релиз	Тип
sqlite3	fixed	3.32.0-1		package
sqlite3	fixed	3.27.2-3+deb10u1	buster	package
sqlite3	not-affected		jessie	package
sqlite	not-affected			package

https://bugs.chromium.org/p/chromium/issues/detail?id=1080459
https://sqlite.org/src/info/0d69f76f0865f962
https://github.com/sqlite/sqlite/commit/becd68ba0dac41904aa817d96a67fb4685734b41

EPSS

Процентиль: 40%

0.00177

Низкий

CVE-2020-13630

CVSS3: 7

ubuntu

больше 5 лет назад

ext/fts3/fts3.c in SQLite before 3.32.0 has a use-after-free in fts3EvalNextRow, related to the snippet feature.

CVE-2020-13630

CVSS3: 7

redhat

больше 5 лет назад

ext/fts3/fts3.c in SQLite before 3.32.0 has a use-after-free in fts3EvalNextRow, related to the snippet feature.

CVE-2020-13630

CVSS3: 7

nvd

больше 5 лет назад

ext/fts3/fts3.c in SQLite before 3.32.0 has a use-after-free in fts3EvalNextRow, related to the snippet feature.

CVE-2020-13630

CVSS3: 7

msrc

около 1 года назад

Описание отсутствует

GHSA-wgpm-4xgr-4mhp

CVSS3: 7

github

больше 3 лет назад

ext/fts3/fts3.c in SQLite before 3.32.0 has a use-after-free in fts3EvalNextRow, related to the snippet feature.

EPSS

Процентиль: 40%

0.00177

Низкий