Описание
In SQlite 3.31.1, a potential null pointer derreference was found in the INTERSEC query processing.
A NULL pointer dereference flaw was found in select.c of SQLite. An out-of-memory error occurs while an early out on the INTERSECT query is processing. This flaw allows an attacker to execute a potential NULL pointer dereference.
Отчет
This flaw is rated as low because this flaw type of vulnerability is believed to require unlikely circumstances to be able to be exploited, or where a successful exploit would give minimal consequences. Also, this flaw is present in a program’s source code but to which no current or theoretically possible, but unproven, exploitation vectors exist or were found during the technical analysis of the flaw.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | sqlite | Out of support scope | ||
| Red Hat Enterprise Linux 7 | sqlite | Out of support scope | ||
| Red Hat Enterprise Linux 9 | sqlite | Not affected | ||
| Red Hat Enterprise Linux 8 | sqlite | Fixed | RHSA-2022:7108 | 25.10.2022 |
| Red Hat Enterprise Linux 8 | sqlite | Fixed | RHSA-2022:7108 | 25.10.2022 |
Показывать по
Дополнительная информация
Статус:
EPSS
7.5 High
CVSS3
Связанные уязвимости
In SQlite 3.31.1, a potential null pointer derreference was found in the INTERSEC query processing.
In SQlite 3.31.1, a potential null pointer derreference was found in the INTERSEC query processing.
In SQlite 3.31.1, a potential null pointer derreference was found in t ...
In SQlite 3.31.1, a potential null pointer derreference was found in the INTERSEC query processing.
EPSS
7.5 High
CVSS3