Описание
Security update for sqlite3
This update for sqlite3 fixes the following issues:
- CVE-2017-2518: Fixed a use-after-free vulnerability which could have led to buffer overflow via a crafted SQL statement (bsc#1155787).
Список пакетов
SUSE Linux Enterprise Point of Sale 11 SP3
libsqlite3-0-3.7.6.3-1.4.7.12.1
sqlite3-3.7.6.3-1.4.7.12.1
SUSE Linux Enterprise Server 11 SP4-LTSS
libsqlite3-0-3.7.6.3-1.4.7.12.1
libsqlite3-0-32bit-3.7.6.3-1.4.7.12.1
sqlite3-3.7.6.3-1.4.7.12.1
Ссылки
- Link for SUSE-SU-2019:14227-1
- E-Mail link for SUSE-SU-2019:14227-1
- SUSE Security Ratings
- SUSE Bug 1155787
- SUSE CVE CVE-2017-2518 page
Описание
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a crafted SQL statement.
Затронутые продукты
SUSE Linux Enterprise Point of Sale 11 SP3:libsqlite3-0-3.7.6.3-1.4.7.12.1
SUSE Linux Enterprise Point of Sale 11 SP3:sqlite3-3.7.6.3-1.4.7.12.1
SUSE Linux Enterprise Server 11 SP4-LTSS:libsqlite3-0-3.7.6.3-1.4.7.12.1
SUSE Linux Enterprise Server 11 SP4-LTSS:libsqlite3-0-32bit-3.7.6.3-1.4.7.12.1
Ссылки
- CVE-2017-2518
- SUSE Bug 1155787
- SUSE Bug 1194085